CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-13712

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/100525
https://sourceforge.net/p/lame/bugs/472/
http://www.securityfocus.com/bid/100525
https://sourceforge.net/p/lame/bugs/472/

Products affected by CVE-2017-13712

Lame Project » Lame » Version: 3.99.5

cpe:2.3:a:lame_project:lame:3.99.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-13712

Products

Pricing

Contact Us