Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-8312
Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows malicious users to read heap uninitialized data via a crafted subtitles file.
Videolan Vlc Media Player
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2017-8313
Heap out-of-bound read in ParseJSS in VideoLAN VLC prior to 2.2.5 due to missing check of string termination allows malicious users to read data beyond allocated memory and potentially crash the process via a crafted subtitles file.
Videolan Vlc Media Player
7.5
CVSSv2
CVE-2014-6440
VideoLAN VLC media player prior to 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service.
Videolan Vlc
7.5
CVSSv2
CVE-2016-5108
Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player prior to 2.2.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.
Debian Debian Linux 8.0
Videolan Vlc Media Player
1 EDB exploit
4.3
CVSSv2
CVE-2016-3941
Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player prior to 2.2.0 allows remote malicious users to cause a denial of service (crash) via a crafted wav file, related to "seek across EOF."
Videolan Vlc Media Player
Canonical Ubuntu Linux 14.04
6.8
CVSSv2
CVE-2015-5949
VideoLAN VLC media player 2.2.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.
Videolan Vlc Media Player
4.3
CVSSv2
CVE-2014-9743
Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player prior to 2.2.0 allows remote malicious users to inject arbitrary web script or HTML via the path info.
Videolan Vlc Media Player
6.8
CVSSv2
CVE-2014-9597
The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
6.8
CVSSv2
CVE-2014-9598
The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
7.5
CVSSv2
CVE-2010-2062
Integer underflow in the real_get_rdt_chunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player prior to 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote malicious users to execute arbitrary code via a crafted length valu...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.7.2
Videolan Vlc Media Player 0.8.6g
Videolan Vlc Media Player 0.8.1337
Videolan Vlc Media Player 0.5.0
Videolan Vlc Media Player 0.8.4a
Videolan Vlc Media Player 0.8.0
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.8.5
Videolan Vlc Media Player 0.9.9a
Videolan Vlc Media Player 0.6.2
Videolan Vlc Media Player 0.8.6h
Videolan Vlc Media Player 0.9.10
Videolan Vlc Media Player 0.8.4
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6c
Videolan Vlc Media Player 0.8.6i
Videolan Vlc Media Player 0.5.2
Videolan Vlc Media Player 0.7.0
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.8a
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »