CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21723
https://notcve.org/view.php?id=CVE-2020-21723
A Segmentation Fault issue discovered StreamSerializer::extractStreams function in streamSerializer.cpp in oggvideotools 0.9.1 allows remote attackers to cause a denial of service (crash) via opening of crafted ogg file. • https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-occurs-in-function-streamserializerextractstreams-in-streamserializercpp https://sourceforge.net/p/oggvideotools/bugs/10 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21724
https://notcve.org/view.php?id=CVE-2020-21724
Buffer Overflow vulnerability in ExtractorInformation function in streamExtractor.cpp in oggvideotools 0.9.1 allows remaote attackers to run arbitrary code via opening of crafted ogg file. • https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-and-heap-overflow-detected-in-line-17-of-streamextractorcpp https://sourceforge.net/p/oggvideotools/bugs/9 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21722
https://notcve.org/view.php?id=CVE-2020-21722
Buffer Overflow vulnerability in oggvideotools 0.9.1 allows remote attackers to run arbitrary code via opening of crafted ogg file. • https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-and-heap-use-after-free-detected-in-line-17-of-streamextractorcpp https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5E3JKOO7D6Y2SW2TQB5JDVG7I4Y3UFGW https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LO6NXK73PNR4KAAHLXAGPWJAPP772IOD https://sourceforge.net/p/oggvideotools/bugs/11 • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-34656
https://notcve.org/view.php?id=CVE-2023-34656
An issue was discovered with the JSESSION IDs in Xiamen Si Xin Communication Technology Video management system 3.1 thru 4.1 allows attackers to gain escalated privileges. • https://github.com/kangjinlong1/Kang.github.io/blob/main/README.md •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-29748
https://notcve.org/view.php?id=CVE-2023-29748
Story Saver for Instragram - Video Downloader 1.0.6 for Android has an exposed component that provides a method to modify the SharedPreference file. An attacker can leverage this method to inject a large amount of data into any SharedPreference file, which will be loaded into memory when the application is opened. When an attacker injects too much data, the application will trigger an OOM error and crash at startup, resulting in a persistent denial of service. Story Saver para Instagram - Vídeo Downloader v1.0.6 para Android tiene un componente expuesto que proporciona un método para modificar el archivo "SharedPreference". Un atacante puede aprovechar este método para inyectar una gran cantidad de datos en cualquier archivo "SharedPreference", que se cargará en la memoria cuando se abra la aplicación. • https://apksos.com/app/story.saver.downloader.photo.video.repost.byrk https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29748/CVE%20detail.md https://play.google.com/store/apps/details?id=ru.yandex.yandexnavi https://www.instagram.com/nihans_macrame •