CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-17098

The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://github.com/TeamSeri0us/pocs/blob/master/soundtouch/2018_09_03
https://gitlab.com/soundtouch/soundtouch/issues/14
https://github.com/TeamSeri0us/pocs/blob/master/soundtouch/2018_09_03
https://gitlab.com/soundtouch/soundtouch/issues/14

Products affected by CVE-2018-17098

Surina » Soundtouch » Version: 2.0.0

cpe:2.3:a:surina:soundtouch:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17098

Products

Pricing

Contact Us