Shodan
Vulnerabilities
Vulnerable Software
Libav:  Security Vulnerabilities
CVE-2018-18829
There exists a NULL pointer dereference in ff_vc1_parse_frame_header_adv in vc1.c in Libav 12.3, which allows attackers to cause a denial-of-service through a crafted aac file.
CVSS Score
6.5
EPSS Score
0.002
Published
2018-10-30
CVE-2018-11224
An issue was discovered in Libav 12.3. A read access violation in the in_table_init16 function in libavcodec/aacsbr.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-05-17
CVE-2018-11102
An issue was discovered in Libav 12.3. A read access violation in the mov_probe function in libavformat/mov.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.
CVSS Score
7.5
EPSS Score
0.005
Published
2018-05-15
CVE-2017-18245
The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted audio file.
CVSS Score
6.5
EPSS Score
0.006
Published
2018-03-23
CVE-2017-18246
The pcm_encode_frame function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted media file.
CVSS Score
6.5
EPSS Score
0.006
Published
2018-03-23
CVE-2017-18247
The av_audio_fifo_size function in libavutil/audio_fifo.c in Libav 12.2 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted media file.
CVSS Score
6.5
EPSS Score
0.007
Published
2018-03-23
CVE-2017-18242
The apply_dependent_coupling function in libavcodec/aacdec.c in Libav 12.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-03-22
CVE-2017-18243
The unpack_parse_unit function in libavcodec/dirac_parser.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault) via a crafted file.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-03-22
CVE-2017-18244
The stereo_processing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file, related to ff_ps_apply.
CVSS Score
6.5
EPSS Score
0.006
Published
2018-03-22
CVE-2018-5766
In Libav through 12.2, there is an invalid memcpy in the av_packet_ref function of libavcodec/avpacket.c. Remote attackers could leverage this vulnerability to cause a denial of service (segmentation fault) via a crafted avi file.
CVSS Score
8.8
EPSS Score
0.008
Published
2018-01-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved