Published: 20/09/2021 Updated: 22/04/2022

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

An issue exists in faad2 up to and including 2.10.0. A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmf.c. It allows an malicious user to cause code Execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
faad2 project faad2
debian debian linux 9.0
debian debian linux 10.0

Multiple vulnerabilities have been discovered in the freeware Advanced Audio Decoder, which may result in denial of service or potentially the execution of arbitrary code if malformed media files are processed For the oldstable distribution (buster), these problems have been fixed in version 2100-1~deb10u1 We recommend that you upgrade your faa ...

An issue was discovered in faad2 before version 2100 A heap-buffer-overflow exists in the function sbr_qmf_analysis_32 located in sbr_qmfc It allows an attacker to cause code execution ...

CWE-787 https://github.com/knik0/faad2/issues/59 https://lists.debian.org/debian-lts-announce/2021/10/msg00020.html https://www.debian.org/security/2022/dsa-5109 https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5109

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-32277

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect