Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flac vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-37327
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote malicious users to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack ...
9.3
CVSSv2
CVE-2007-3507
Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) prior to 0.0.10 allows user-assisted remote malicious users to execute arbitrary code via a large comment value_length.
Flac123 Flac123
5.8
CVSSv2
CVE-2021-4156
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bou...
Libsndfile Project Libsndfile 1.1.10
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2018-11439
The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote malicious users to cause information disclosure (heap-based buffer over-read) via a crafted audio file.
Taglib Taglib 1.11.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2018-5882
While parsing a Flac file with a corrupted comment block, a buffer over-read can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear.
Qualcomm Mdm9206 Firmware -
Qualcomm Mdm9607 Firmware -
Qualcomm Mdm9650 Firmware -
Qualcomm Msm8909w Firmware -
Qualcomm Msm8996au Firmware -
Qualcomm Sd 210 Firmware -
Qualcomm Sd 212 Firmware -
Qualcomm Sd 205 Firmware -
Qualcomm Sd 425 Firmware -
Qualcomm Sd 430 Firmware -
Qualcomm Sd 450 Firmware -
Qualcomm Sd 600 Firmware -
Qualcomm Sd 615 Firmware -
Qualcomm Sd 616 Firmware -
Qualcomm Sd 415 Firmware -
Qualcomm Sd 617 Firmware -
Qualcomm Sd 625 Firmware -
Qualcomm Sd 650 Firmware -
Qualcomm Sd 652 Firmware -
Qualcomm Sd 820 Firmware -
Qualcomm Sd 835 Firmware -
Qualcomm Sd 845 Firmware -
10
CVSSv2
CVE-2021-35104
Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired ...
Qualcomm Apq8009w Firmware -
Qualcomm Apq8017 Firmware -
Qualcomm Apq8064au Firmware -
Qualcomm Apq8096au Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fsm10055 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6010 Firmware -
Qualcomm Ipq6018 Firmware -
Qualcomm Ipq6028 Firmware -
Qualcomm Ipq8070 Firmware -
Qualcomm Ipq8070a Firmware -
Qualcomm Ipq8071 Firmware -
Qualcomm Ipq8071a Firmware -
Qualcomm Ipq8072 Firmware -
6.8
CVSSv2
CVE-2006-7075
Buffer overflow in the meta_read_flac function in meta_decoder.c for Aqualung 0.9beta5 and previous versions, and CVS 0.193.2 and previous versions, allows user-assisted malicious users to execute arbitrary code via a long Vorbis comment in a Free Lossless Audio Codec (FLAC) file...
Aqualung Aqualung 0.9 Beta5
7.5
CVSSv2
CVE-2007-4974
Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and previous versions might allow remote malicious users to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size.
Mega-nerd Libsndfile 1.0.10
Mega-nerd Libsndfile 1.0.12
Mega-nerd Libsndfile 1.0.14
Mega-nerd Libsndfile 1.0.16
Mega-nerd Libsndfile 0.0.8
Mega-nerd Libsndfile 0.0.28
Mega-nerd Libsndfile 1.0.0
Mega-nerd Libsndfile 1.0.1
Mega-nerd Libsndfile 1.0.11
Mega-nerd Libsndfile 1.0.13
Mega-nerd Libsndfile 1.0.15
Mega-nerd Libsndfile
4.3
CVSSv2
CVE-2017-7741
In libsndfile prior to 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with write memory access) via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585.
Libsndfile Project Libsndfile
4.3
CVSSv2
CVE-2017-7742
In libsndfile prior to 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with read memory access) via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585.
Libsndfile Project Libsndfile
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »