CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19890

An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 2 case.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.4%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://github.com/knik0/faac/issues/20
https://github.com/knik0/faac/issues/20

Products affected by CVE-2018-19890

Audiocoding » Freeware Advanced Audio Coder » Version: 1.29.9.2

cpe:2.3:a:audiocoding:freeware_advanced_audio_coder:1.29.9.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19890

Products

Pricing

Contact Us