Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wavpack wavpack vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-10169
The read_code function in read_words.c in Wavpack prior to 5.1.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted WV file.
Wavpack Project Wavpack
4.3
CVSSv2
CVE-2016-10170
The WriteCaffHeader function in cli/caff.c in Wavpack prior to 5.1.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted WV file.
Wavpack Project Wavpack
4.3
CVSSv2
CVE-2016-10171
The unreorder_channels function in cli/wvunpack.c in Wavpack prior to 5.1.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted WV file.
Wavpack Project Wavpack
4.3
CVSSv2
CVE-2016-10172
The read_new_config_info function in open_utils.c in Wavpack prior to 5.1.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted WV file.
Wavpack Project Wavpack
6.8
CVSSv2
CVE-2018-7254
The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote malicious user to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file.
Wavpack Wavpack 5.1.0
Debian Debian Linux 9.0
1 EDB exploit
NA
CVE-2022-2476
A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x561b47a970c6 bp 0...
Wavpack Wavpack 5.4.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
6.8
CVSSv2
CVE-2018-10536
An issue exists in WavPack 5.1.0 and previous versions. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple format chunks.
Wavpack Wavpack
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2018-10537
An issue exists in WavPack 5.1.0 and previous versions. The W64 parser component contains a vulnerability that allows writing to memory because ParseWave64HeaderConfig in wave64.c does not reject multiple format chunks.
Wavpack Wavpack
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2018-10538
An issue exists in WavPack 5.1.0 and previous versions for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection within ...
Wavpack Wavpack
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2018-10539
An issue exists in WavPack 5.1.0 and previous versions for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before attempting memory allocation, related to a lack of integer-overflow protection ...
Wavpack Wavpack
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »