Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kodi kodi vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-30207
A divide by zero issue discovered in Kodi Home Theater Software 19.5 and previous versions allows malicious users to cause a denial of service via use of crafted mp3 file.
Kodi Kodi
4.6
CVSSv3
CVE-2023-23082
A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows malicious users to cause a denial of service due to an improper length of the value passed to the offset argument.
Kodi Kodi
5.5
CVSSv3
CVE-2021-42917
Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows malicious users to cause a denial of service due to improper length of values passed to istream.
Kodi Kodi
6.1
CVSSv3
CVE-2018-8831
A Persistent XSS vulnerability exists in Kodi (formerly XBMC) up to and including 17.6 that allows the execution of arbitrary HTML/script code in the context of the victim user's browser via a playlist.
Kodi Kodi
1 EDB exploit
7.8
CVSSv3
CVE-2017-8311
Potential heap based buffer overflow in ParseJSS in VideoLAN VLC prior to 2.2.5 due to skipping NULL terminator in an input string allows malicious users to execute arbitrary code via a crafted subtitles file.
Videolan Vlc Media Player
1 EDB exploit
5.5
CVSSv3
CVE-2017-8314
Directory Traversal in Zip Extraction built-in function in Kodi 17.1 and previous versions allows arbitrary file write on disk via a Zip file as subtitles.
Kodi Kodi
Debian Debian Linux 7.0
7.5
CVSSv3
CVE-2017-5982
Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote malicious users to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.
Kodi Kodi 17.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started