Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-1921
HistoryJul 19, 2022 - 12:00 a.m.

CVE-2022-1921

2022-07-1900:00:00
ubuntu.com
ubuntu.com
15

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

33.5%

Integer overflow in avidemux element in gst_avi_demux_invert function which
allows a heap overwrite while parsing avi files. Potential for arbitrary
code execution through heap overwrite.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchgst-plugins-good1.0< 1.14.5-0ubuntu1~18.04.3UNKNOWN
ubuntu20.04noarchgst-plugins-good1.0< 1.16.3-0ubuntu1.1UNKNOWN
ubuntu22.04noarchgst-plugins-good1.0< 1.20.3-0ubuntu1UNKNOWN
ubuntu16.04noarchgst-plugins-good1.0< 1.8.3-1ubuntu0.5+esm1UNKNOWN

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

33.5%