Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-pr4h-24v3-fp67

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.8

Описание

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.

Ссылки

EPSS

Процентиль: 77%
0.01005
Низкий

7.8 High

CVSS3

CVE ID

CVE-2018-10536

Дефекты

CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2018-10536

CVSS3: 7.8
ubuntu
почти 8 лет назад

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.

redhat логотип

CVE-2018-10536

CVSS3: 7.8
redhat
почти 8 лет назад

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.

nvd логотип

CVE-2018-10536

CVSS3: 7.8
nvd
почти 8 лет назад

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.

debian логотип

CVE-2018-10536

CVSS3: 7.8
debian
почти 8 лет назад

An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser c ...

suse-cvrf логотип

openSUSE-SU-2021:0154-1

suse-cvrf
около 5 лет назад

Security update for wavpack

EPSS

Процентиль: 77%
0.01005
Низкий

7.8 High

CVSS3

CVE ID

CVE-2018-10536

Дефекты

CWE-787