) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:matroska:libebml:1.3.0:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-52339 |
In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or writing. It may result in buffer overflows. Published: January 11, 2024; 9:15:44 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2021-3405 |
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml. Published: February 23, 2021; 3:15:12 PM -0500 |
V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2015-8791 |
The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access. Published: January 29, 2016; 2:59:03 PM -0500 |
V3.0: 4.3 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2015-8790 |
The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access. Published: January 29, 2016; 2:59:02 PM -0500 |
V3.0: 4.3 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2015-8789 |
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document. Published: January 29, 2016; 2:59:01 PM -0500 |
V3.0: 9.6 CRITICAL V2.0: 9.3 HIGH |