Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sox vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-11359
The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conversion to a wav file.
Sound Exchange Project Sound Exchange 14.4.2
Debian Debian Linux 7.0
Debian Debian Linux 8.0
1 EDB exploit
NA
CVE-2023-34432
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.
Sound Exchange Project Sound Exchange
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 38
NA
CVE-2023-26590
A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58. This flaw can lead to a denial of service.
Sox Project Sox 14.4.3
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 38
NA
CVE-2023-32627
A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. This flaw can lead to a denial of service.
Sox Project Sox 14.4.3
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 38
NA
CVE-2023-34318
A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41. This flaw can lead to a denial of service, code execution, or information disclosure.
Sox Project Sox 14.4.3
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 38
NA
CVE-2021-33844
A floating point exception (divide-by-zero) issue exists in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash.
Sox Project Sox 14.4.2-7
NA
CVE-2021-23159
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash.
Sox Project Sox 14.4.2-7
NA
CVE-2021-23172
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread() in hcom.c file. The vulnerability is exploitable with a crafted hcomn file, that could cause an application to crash.
Sox Project Sox 14.4.2-7
NA
CVE-2021-23210
A floating point exception (divide-by-zero) issue exists in SoX in functon read_samples() of voc.c file. An attacker with a crafted file, could cause an application to crash.
Sox Project Sox 14.4.2-7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3