CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-12779

The Node_GetData function in corec/corec/node/node.c in mkvalidator 0.5.1 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.4%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://packetstormsecurity.com/files/144902/mkvalidator-0.5.1-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2017/Nov/19
https://github.com/Matroska-Org/foundation-source/issues/24
http://packetstormsecurity.com/files/144902/mkvalidator-0.5.1-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2017/Nov/19
https://github.com/Matroska-Org/foundation-source/issues/24

Products affected by CVE-2017-12779

Matroska » Mkvalidator » Version: 0.5.1

cpe:2.3:a:matroska:mkvalidator:0.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12779

Products

Pricing

Contact Us