Exiv2 QuickTime Video quicktimevideo.cpp decodeBlock buffer overflow 🚫 [Falso Positivo]

Questo problema sembra essere un falso positivo. Verifichi le fonti citate e consideri di non utilizzare affatto questa voce.

Sequenza temporale

Utente

128

Campo

exploit_price_0day2
source_cve_nvd_summary1
source_cve_assigned1
advisory_identifier1
cna_response_summary1

Commit Conf

90%32
50%10
70%3
100%3

Approve Conf

90%32
80%10
70%3
100%3
IDImpegnatoUtenteCampoModificareOsservazioniAccettatoStatoC
1331015026/11/2022VulD...cve_nvd_summaryA vulnerability was found in Exiv2. It has been declared as critical. Affected by this vulnerability is the function QuickTimeVideo::decodeBlock of the file quicktimevideo.cpp of the component QuickTime Video Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The name of the patch is d3651fdbd352cbaf259f89abf7557da343339378. It is recommended to apply a patch to fix this issue. The identifier VDB-212497 was assigned to this vulnerability.cvedetails.com26/11/2022accettato
70
1331014926/11/2022VulD...cve_assigned1666994400 (29/10/2022)cve.mitre.org26/11/2022accettato
70
1331014826/11/2022VulD...identifierd3651fdbd352cbaf259f89abf7557da343339378cve.mitre.org26/11/2022accettato
70
1329267021/11/2022VulD...price_0daysee exploit price documentation21/11/2022accettato
90
1329266921/11/2022VulD...response_summaryIssue was introduced on the main (dev) branch and fixed shortly afterwards, so none of the official releases were ever affected.21/11/2022accettato
100
1329266821/11/2022VulD...falsepositive121/11/2022accettato
100
1329266721/11/2022VulD...disputed121/11/2022accettato
100
1319825029/10/2022VulD...price_0day$0-$5ksee exploit price documentation29/10/2022accettato
90
1319824929/10/2022VulD...cvss3_meta_tempscore6.0see CVSS documentation29/10/2022accettato
90
1319824829/10/2022VulD...cvss3_meta_basescore6.3see CVSS documentation29/10/2022accettato
90
1319824729/10/2022VulD...cvss3_vuldb_tempscore6.0see CVSS documentation29/10/2022accettato
90
1319824629/10/2022VulD...cvss3_vuldb_basescore6.3see CVSS documentation29/10/2022accettato
90
1319824529/10/2022VulD...cvss2_vuldb_tempscore6.5see CVSS documentation29/10/2022accettato
90
1319824429/10/2022VulD...cvss2_vuldb_basescore7.5see CVSS documentation29/10/2022accettato
90
1319824329/10/2022VulD...cvss3_vuldb_eXderived from historical data29/10/2022accettato
80
1319824229/10/2022VulD...cvss2_vuldb_eNDderived from historical data29/10/2022accettato
80
1319824129/10/2022VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector29/10/2022accettato
80
1319824029/10/2022VulD...cvss2_vuldb_rcCderived from vuldb v3 vector29/10/2022accettato
80
1319823929/10/2022VulD...cvss2_vuldb_aiPderived from vuldb v3 vector29/10/2022accettato
80
1319823829/10/2022VulD...cvss2_vuldb_iiPderived from vuldb v3 vector29/10/2022accettato
80

28 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 28 results.

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!