Jcdr428

#7605of 53,625
36.1Total CVSS
Vulnerabilities · 5
Medium
3
Critical
2
PT-2021-20895
9.8
2021-12-03
Tsmuxer · Tsmuxer · CVE-2021-35344
Name of the Vulnerable Software and Affected Versions: tsMuxer version 2.6.16 Description: The issue is a heap-based buffer overflow that occurs via the `BitStreamReader::getCurVal` function in `bitStream.h`. This is a general information about the problem, but specific details such as the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are not provided. Recommendations: For tsMuxer version 2.6.16, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2021-20896
9.8
2021-12-03
Tsmuxer · Tsmuxer · CVE-2021-35346
Name of the Vulnerable Software and Affected Versions: tsMuxer version 2.6.16 Description: A heap-based buffer overflow was discovered in tsMuxer via the function `HevcSpsUnit::short term ref pic set(int)` in `hevc.cpp`. This issue can be exploited, but no details are provided about the estimated number of potentially affected devices or real-world incidents. Recommendations: For tsMuxer version 2.6.16, consider disabling the `HevcSpsUnit::short term ref pic set(int)` function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.
PT-2021-20376
5.5
2021-06-23
Tsmuxer · Tsmuxer · CVE-2021-34067
Name of the Vulnerable Software and Affected Versions: tsMuxer version 2.6.16 Description: A heap-based buffer overflow issue allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file. Recommendations: For tsMuxer version 2.6.16, at the moment, there is no information about a newer version that contains a fix for this issue.
PT-2021-20377
5.5
2021-06-23
Tsmuxer · Tsmuxer · CVE-2021-34068
Name of the Vulnerable Software and Affected Versions: tsMuxer version 2.6.16 Description: A heap-based buffer overflow issue allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file. Recommendations: For tsMuxer version 2.6.16, consider avoiding the use of crafted files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.
PT-2021-20378
5.5
2021-06-23
Tsmuxer · Tsmuxer · CVE-2021-34069
Name of the Vulnerable Software and Affected Versions: tsMuxer version 2.6.16 Description: A divide-by-zero bug allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file. Recommendations: For tsMuxer version 2.6.16, avoid using crafted files that may trigger the divide-by-zero bug until a patch is available. As a temporary workaround, consider validating input files to prevent the application from processing malicious data.