Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vlc media player vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2021-25802
A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows malicious users to cause an out-of-bounds read via a crafted .avi file.
Videolan Vlc Media Player 3.0.11
7.1
CVSSv3
CVE-2021-25803
A buffer overflow vulnerability in the vlc_input_attachment_New component of VideoLAN VLC Media Player 3.0.11 allows malicious users to cause an out-of-bounds read via a crafted .avi file.
Videolan Vlc Media Player 3.0.11
7.5
CVSSv3
CVE-2021-25804
A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the application.
Videolan Vlc Media Player 3.0.11
1 Github repository
NA
CVE-2013-3245
plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, and possibly other versions, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MKV file, possibly involving an integer overflow and out-of-bounds...
Videolan Vlc Media Player 2.0.7
7.8
CVSSv3
CVE-2019-18278
When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqt_plugin!vlc_entry_license__3_0_0f+0x00000000003b9aba. NOTE: the VideoLAN security team indicates that they have not been contacted, and have no w...
Videolan Vlc Media Player 3.0.8
NA
CVE-2014-9598
The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
NA
CVE-2014-9597
The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
NA
CVE-2011-1087
Buffer overflow in VideoLAN VLC media player 1.0.5 allows user-assisted remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .mp3 file that is played during bookmark creation.
Videolan Vlc Media Player 1.0.5
6.1
CVSSv3
CVE-2013-3565
Multiple cross-site scripting (XSS) vulnerabilities in the HTTP Interface in VideoLAN VLC Media Player prior to 2.0.7 allow remote malicious users to inject arbitrary web script or HTML via the (1) command parameter to requests/vlm_cmd.xml, (2) dir parameter to requests/browse.xm...
Videolan Vlc Media Player
Opensuse Opensuse 13.1
NA
CVE-2013-6934
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a space character at the beginning of an RTSP ...
Live555 Streaming Media 2013-11-26
Videolan Vlc Media Player
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »