Vulnerability Details CVE-2023-33693
A buffer overflow in EasyPlayerPro-Win v3.2.19.0106 to v3.6.19.0823 allows attackers to cause a Denial of Service (DoS) via a crafted XML file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.3%
CVSS Severity
CVSS v3 Score 5.5
References
- https://github.com/tsingsee/EasyPlayerPro-Win/blob/master/Src/C%2B%2B/EasyPlayerPro/xmlConfig.h
- https://github.com/tsingsee/EasyPlayerPro-Win/pull/24
- https://www.youtube.com/watch?v=K27nGHa-hTE&ab_channel=ErnestAng
- https://github.com/tsingsee/EasyPlayerPro-Win/blob/master/Src/C%2B%2B/EasyPlayerPro/xmlConfig.h
- https://github.com/tsingsee/EasyPlayerPro-Win/pull/24
- https://www.youtube.com/watch?v=K27nGHa-hTE&ab_channel=ErnestAng
Products affected by CVE-2023-33693
-
cpe:2.3:a:tsingsee:easyplayerpro:3.2.19.0106
-
cpe:2.3:a:tsingsee:easyplayerpro:3.6.19.0823
-
cpe:2.3:o:microsoft:windows:-