Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2016-9810
HistoryJan 13, 2017 - 4:59 p.m.

CVE-2016-9810

2017-01-1316:59:01
CWE-125
mitre
web.nvd.nist.gov
41
cve-2016-9810
gst-plugins-good
gstreamer
denial of service
invalid memory read
crash
nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

0.013

Percentile

85.9%

JSON

The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via an invalid file, which triggers an incorrect unref call.

Affected configurations

Nvd
Node
gstreamergstreamerRange1.10.1
VendorProductVersionCPE
gstreamergstreamer*cpe:2.3:a:gstreamer:gstreamer:*:*:*:*:*:*:*:*

Related

nessus 20
prion 1
redhatcve 1
osv 1
veracode 1
ubuntucve 1
debiancve 1
cvelist 1
nvd 1
openvas 12
suse 10
mageia 1
oraclelinux 1
redhat 1
centos 1
gentoo 1
rosalinux 1
nessus
nessus
RHEL 6 : gstreamer-plugins-good (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : gstreamer-plugins-good (Unpatched Vulnerability)
2024-06-03 00:00:00
openSUSE Security Update : gstreamer-plugins-good (openSUSE-2017-83)
2017-01-17 00:00:00
prion
prion
Code injection
2017-01-13 16:59:00
redhatcve
redhatcve
CVE-2016-9810
2016-12-06 12:17:41
osv
osv
CVE-2016-9810
2017-01-13 16:59:01
veracode
veracode
Denial Of Service (DoS)
2018-11-28 04:05:52
ubuntucve
ubuntucve
CVE-2016-9810
2017-01-13 00:00:00
debiancve
debiancve
CVE-2016-9810
2017-01-13 16:59:01
cvelist
cvelist
CVE-2016-9810
2017-01-13 16:00:00
nvd
nvd
CVE-2016-9810
2017-01-13 16:59:01
openvas
openvas
openSUSE: Security Advisory for gstreamer-plugins-good (openSUSE-SU-2017:0141-1)
2017-01-17 00:00:00
openSUSE: Security Advisory for gstreamer-plugins-good (openSUSE-SU-2017:0151-1)
2017-01-17 00:00:00
Mageia: Security Advisory (MGASA-2016-0424)
2022-01-28 00:00:00
suse
suse
Security update for gstreamer-plugins-good (important)
2016-12-29 13:08:43
Security update for gstreamer-0_10-plugins-good (important)
2017-01-20 17:08:55
Security update for gstreamer-plugins-good (important)
2017-01-08 01:14:49
mageia
mageia
Updated gstreamer0.10-plugins-good and gstreamer1.0-plugins-good packages fix security vulnerabilities
2016-12-29 13:29:11
oraclelinux
oraclelinux
GStreamer security, bug fix, and enhancement update
2017-08-07 00:00:00
redhat
redhat
(RHSA-2017:2060) Moderate: GStreamer security, bug fix, and enhancement update
2017-08-01 05:57:18
centos
centos
clutter, gnome, gstreamer, gstreamer1, orc security update
2017-08-24 01:36:20
gentoo
gentoo
GStreamer plug-ins: User-assisted execution of arbitrary code
2017-05-18 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1850
2021-07-02 17:03:31

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

0.013

Percentile

85.9%

JSON
Related for CVE-2016-9810
nessus20prion1redhatcve1osv1veracode1ubuntucve1debiancve1cvelist1nvd1openvas12suse10mageia1oraclelinux1redhat1centos1gentoo1rosalinux1