CVE-2017-11720

Опубликовано: 28 июл. 2017

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.

Ссылки

https://blogs.gentoo.org/ago/2017/06/17/lame-divide-by-zero-in-parse_wave_header-get_audio-c/
https://bugs.debian.org/777159
https://sourceforge.net/p/lame/bugs/460/
Exploit
Third Party Advisory
https://blogs.gentoo.org/ago/2017/06/17/lame-divide-by-zero-in-parse_wave_header-get_audio-c/
https://bugs.debian.org/777159
https://sourceforge.net/p/lame/bugs/460/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:lame_project:lame:3.99.5:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.0045

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-369

Связанные уязвимости

CVE-2017-11720

CVSS3: 9.8

ubuntu

больше 8 лет назад

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.

CVE-2017-11720

CVSS3: 3.3

redhat

около 11 лет назад

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.

CVE-2017-11720

CVSS3: 9.8

debian

больше 8 лет назад

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a ...

GHSA-v3ph-gjww-6w58

CVSS3: 9.8

github

больше 3 лет назад

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.

EPSS

Процентиль: 63%

0.0045

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-369