I SELA 0.1.2-alpha var ett kritiskt svag punkt identifieras. Som påverkar funktionen init_apev2_keys filen core/apev2.c. Det finns inga kända uppgifter om åtgärder. Användningen av en alternativ produkt är användbar.
| Fält | 01/06/2018 10:33 | 10/02/2020 16:35 |
|---|---|---|
| name | SELA | SELA |
| version | 0.1.2-alpha | 0.1.2-alpha |
| file | core/apev2.c | core/apev2.c |
| function | init_apev2_keys | init_apev2_keys |
| cwe | 119 (minneskorruption) | 119 (minneskorruption) |
| risk | 2 | 2 |
| cvss2 | 7.5 | 7.5 |
| cvss2 | 7.5 | 7.5 |
| cvss2 | N | N |
| cvss2 | L | L |
| cvss2 | N | N |
| cvss2 | P | P |
| cvss2 | P | P |
| cvss2 | P | P |
| cvss2 | N | N |
| cvss2 | L | L |
| cvss2 | N | N |
| cvss2 | N | N |
| cvss2 | N | N |
| cvss2 | P | P |
| cvss3 | 7.4 | 7.4 |
| cvss3 | 7.4 | 7.4 |
| cvss3 | 7.3 | 7.3 |
| cvss3 | 7.3 | 7.3 |
| cvss3 | N | N |
| cvss3 | L | L |
| cvss3 | N | N |
| cvss3 | N | N |
| cvss3 | U | U |
| cvss3 | L | L |
| cvss3 | L | L |
| cvss3 | L | L |
| cvss3 | N | N |
| cvss3 | L | L |
| cvss3 | N | N |
| cvss3 | N | N |
| cvss3 | U | U |
| cvss3 | N | N |
| cvss3 | N | N |
| cvss3 | H | H |
| date | 1527724800 (31/05/2018) | 1527724800 (31/05/2018) |
| url | https://github.com/sahaRatul/sela/issues/12 | https://github.com/sahaRatul/sela/issues/12 |
| price | $0-$5k | $0-$5k |
| cve | CVE-2018-11626 | CVE-2018-11626 |
| cve | 1527724800 | 1527724800 |
| cve | 1527717600 | 1527717600 |
| cve | SELA (aka SimplE Lossless Audio) v0.1.2-alpha has a stack-based buffer overflow in the core/apev2.c init_apev2_keys function. | SELA (aka SimplE Lossless Audio) v0.1.2-alpha has a stack-based buffer overflow in the core/apev2.c init_apev2_keys function. |
| location | Website | Website |
| cvss2 | ND | ND |
| cvss2 | ND | ND |
| cvss2 | ND | ND |
| cvss3 | X | X |
| cvss3 | X | X |
| cvss3 | X | X |
| 0day | 1 | 1 |
| cvss3 | 7.5 | 7.5 |
| discoverydate | 1527638400 |
Are you interested in using VulDB?
Download the whitepaper to learn more about our service!