CVE-2020-18781

Опубликовано: 22 авг. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.

Ссылки

https://github.com/mpruett/audiofile/issues/56
Exploit
Issue Tracking
Third Party Advisory
https://github.com/mpruett/audiofile/issues/56
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:audiofile:audiofile:0.3.6:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.00029

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2020-18781

CVSS3: 5.5

ubuntu

больше 2 лет назад

Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.

CVE-2020-18781

CVSS3: 5.5

redhat

больше 2 лет назад

Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.

CVE-2020-18781

CVSS3: 5.5

debian

больше 2 лет назад

Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in a ...

GHSA-xhq7-wg93-r5f3

CVSS3: 5.5

github

больше 2 лет назад

Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.

EPSS

Процентиль: 8%

0.00029

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-787