CVE-2018-17096

Опубликовано: 16 сент. 2018

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.

Ссылки

https://github.com/TeamSeri0us/pocs/tree/master/soundtouch/2018_09_03
Exploit
Third Party Advisory
https://gitlab.com/soundtouch/soundtouch/issues/14
Third Party Advisory
https://github.com/TeamSeri0us/pocs/tree/master/soundtouch/2018_09_03
Exploit
Third Party Advisory
https://gitlab.com/soundtouch/soundtouch/issues/14
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:surina:soundtouch:2.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00775

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-617

Связанные уязвимости

CVE-2018-17096

CVSS3: 6.5

ubuntu

больше 7 лет назад

CVE-2018-17096

CVSS3: 6.5

redhat

больше 7 лет назад

CVE-2018-17096

CVSS3: 6.5

debian

больше 7 лет назад

The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parvia ...

GHSA-h6fq-f4xm-h8jq

CVSS3: 6.5

github

больше 3 лет назад

openSUSE-SU-2018:3691-1

suse-cvrf

около 7 лет назад

Security update for soundtouch

EPSS

Процентиль: 73%

0.00775

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-617