Lucene search
China National Vulnerability DatabaseCNVD-2022-05017HistoryDec 19, 2021 - 12:00 a.m.
Clementine Denial of Service Vulnerability
2021-12-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
39.3%
Clementine is a multi-platform music player for individual developers running on GNU/Linux, Mac OS X and Windows operating systems. a denial of service vulnerability exists in Clementine Music Player prior to 1.3.1, which stems from a vulnerability to read access conflicts when block data is moved, affecting memcpy 0x265’s MP3 file parsing functionality. An attacker could use this issue to cause the clementine.exe process to crash (DoS) or implement arbitrary code execution in the context of the currently logged-in Windows user.
| CPE | Name | Operator | Version |
|---|---|---|---|
| clementine clementine | le | 1.3.1 |
Related
debiancve
debiancve
CVE-2021-40827
2021-12-15 07:15:07
osv
osv
CVE-2021-40827
2021-12-15 07:15:07
cvelist
cvelist
CVE-2021-40827
2021-12-15 06:37:28
prion
prion
Code injection
2021-12-15 07:15:00
cve
cve
CVE-2021-40827
2021-12-15 07:15:07
ubuntucve
ubuntucve
CVE-2021-40827
2021-12-15 00:00:00
nvd
nvd
CVE-2021-40827
2021-12-15 07:15:07