CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38857 – Ubuntu Security Notice USN-6313-1
https://notcve.org/view.php?id=CVE-2023-38857
15 Aug 2023 — Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the stcoin function in mp4read.c. La vulnerabilidad de desbordamiento del búfer infaad2 v.2.10.1 permite a un atacante remoto ejecutar código arbitrario y provocar una denegación de servicio a través de la función stcoin en mp4read.c. It was discovered that FAAD2 incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted i... • https://github.com/knik0/faad2/issues/171 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38858 – Gentoo Linux Security Advisory 202401-13
https://notcve.org/view.php?id=CVE-2023-38858
15 Aug 2023 — Buffer Overflow vulnerability infaad2 v.2.10.1 allows a remote attacker to execute arbitrary code and cause a denial of service via the mp4info function in mp4read.c:1039. La vulnerabilidad de desbordamiento del búfer infaad2 v.2.10.1 permite a un atacante remoto ejecutar código arbitrario y provocar una denegación de servicio a través de la función mp4info en mp4read.c:1039. Multiple denial of service vulnerabilities have been found in FAAD2. Versions greater than or equal to 2.11.0 are affected. • https://github.com/knik0/faad2/issues/173 • CWE-787: Out-of-bounds Write •