exploitDog

GHSA-76x4-fmxg-fr2x

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.

au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.

Ссылки

EPSS

Процентиль: 43%

0.00208

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2017-7604

CVSS3: 7.8

nvd

почти 9 лет назад

au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.

EPSS

Процентиль: 43%

0.00208

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-20