CVE-2023-47360

Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect packet length.
Configurations

Configuration 1 (hide)

cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*

History

01 Dec 2023, 02:15

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2023/11/msg00034.html -

13 Nov 2023, 19:32

Type Values Removed Values Added
First Time Videolan
Videolan vlc Media Player
CPE cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*
References () https://0xariana.github.io/blog/real_bugs/vlc/mms - () https://0xariana.github.io/blog/real_bugs/vlc/mms - Exploit, Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-191

07 Nov 2023, 16:17

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-07 16:15

Updated : 2023-12-10 15:26


NVD link : CVE-2023-47360

Mitre link : CVE-2023-47360

CVE.ORG link : CVE-2023-47360


JSON object : View

Products Affected

videolan

  • vlc_media_player
CWE
CWE-191

Integer Underflow (Wrap or Wraparound)