Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-44269

Опубликовано: 10 мар. 2022
Источник: nvd
CVSS3: 5.5
CVSS2: 4.3
EPSS Низкий

Описание

An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV files. This issue triggered in function WavpackPackSamples of file src/pack_utils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:wavpack:wavpack:5.4.0:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

EPSS

Процентиль: 20%
0.00064
Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2021-44269

CVSS3: 5.5
ubuntu
больше 3 лет назад

An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV files. This issue triggered in function WavpackPackSamples of file src/pack_utils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound.

redhat логотип

CVE-2021-44269

CVSS3: 3.5
redhat
больше 3 лет назад

An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV files. This issue triggered in function WavpackPackSamples of file src/pack_utils.c, tainted variable cnt is too large, that makes pointer sptr read beyond heap bound.

debian логотип

CVE-2021-44269

CVSS3: 5.5
debian
больше 3 лет назад

An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV f ...

suse-cvrf логотип

openSUSE-SU-2022:0954-1

suse-cvrf
больше 3 лет назад

Security update for wavpack

suse-cvrf логотип

SUSE-SU-2022:0954-1

suse-cvrf
больше 3 лет назад

Security update for wavpack

EPSS

Процентиль: 20%
0.00064
Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125