PT-2021-20396 · Miniaudio · Miniaudio

Published

2021-06-25

Updated

2025-08-26

CVE-2021-34185

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Miniaudio version 0.10.35

Description: The issue is caused by an integer-based buffer overflow due to an out-of-bounds left shift in the drwav bytes to u32 function in miniaudio.h.

Recommendations: For Miniaudio version 0.10.35, consider applying a patch or fix that addresses the out-of-bounds left shift in the drwav bytes to u32 function to prevent the buffer overflow.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2021-34185

Affected Products

Miniaudio

PT-2021-20396 · Miniaudio · Miniaudio

CVE-2021-34185

Weakness Enumeration

Related Identifiers

Affected Products

References · 4