CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-36619
https://notcve.org/view.php?id=CVE-2024-36619
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition. • https://gist.github.com/1047524396/fad68e8251f4e34a1bb838de697d5119 https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/wavarc.c#L651 https://github.com/ffmpeg/ffmpeg/commit/28c7094b25b689185155a6833caf2747b94774a4 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-47193
https://notcve.org/view.php?id=CVE-2024-47193
WithSecure Elements Agent for Mac before 24.3, MDR before 24.3, and Elements Client Security for Mac before 16.10 allow a remote Denial of Service. • https://www.withsecure.com/en/support/security-advisories/cve-2024-47193 •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-36616
https://notcve.org/view.php?id=CVE-2024-36616
An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows attackers to cause a denial of service in the application via a crafted VQA file. • https://gist.github.com/1047524396/ded3e1509d8296ec4a91817867d108e0 https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavformat/westwood_vqa.c#L265 https://github.com/ffmpeg/ffmpeg/commit/86f73277bf014e2ce36dd2594f1e0fb8b3bd6661 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-36618
https://notcve.org/view.php?id=CVE-2024-36618
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition. • https://gist.github.com/1047524396/a148f3679415a6da53ca112eb2ba1523 https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavformat/avidec.c#L1699 https://github.com/ffmpeg/ffmpeg/commit/7a089ed8e049e3bfcb22de1250b86f2106060857 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-54159
https://notcve.org/view.php?id=CVE-2024-54159
stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp/rtthrottle symlink attack. • https://cwe.mitre.org/data/definitions/61.html https://security.opensuse.org/2024/11/29/stalld-fixed-tmp-file.html https://www.openwall.com/lists/oss-security/2024/11/29/3 • CWE-732: Incorrect Permission Assignment for Critical Resource •