Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-41325HistoryDec 06, 2022 - 4:15 p.m.
CVE-2022-41325
2022-12-0616:15:11
Debian Security Bug Tracker
security-tracker.debian.org
21
integer overflow
vnc module
vlc media player
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.2%
An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | vlc | < 3.0.18-1 | vlc_3.0.18-1_all.deb |
| Debian | 11 | all | vlc | < 3.0.18-0+deb11u1 | vlc_3.0.18-0+deb11u1_all.deb |
| Debian | 999 | all | vlc | < 3.0.18-1 | vlc_3.0.18-1_all.deb |
| Debian | 13 | all | vlc | < 3.0.18-1 | vlc_3.0.18-1_all.deb |
Related
nessus
nessus
Debian DLA-3216-1 : vlc - LTS security update
2022-12-03 00:00:00
openSUSE 15 Security Update : vlc (openSUSE-SU-2022:10255-1)
2023-01-01 00:00:00
Debian DSA-5297-1 : vlc - security update
2022-12-07 00:00:00
nvd
nvd
CVE-2022-41325
2022-12-06 16:15:11
redos
redos
ROS-20221207-02
2022-12-07 00:00:00
cve
cve
CVE-2022-41325
2022-12-06 16:15:11
debian
debian
[SECURITY] [DSA 5297-1] vlc security update
2022-12-06 21:12:41
[SECURITY] [DLA 3216-1] vlc security update
2022-12-02 23:11:31
veracode
veracode
Integer Overflow
2022-12-11 02:03:56
osv
osv
vlc - security update
2022-12-03 00:00:00
vlc - security update
2022-12-06 00:00:00
vlc vulnerabilities
2023-06-20 19:47:23
prion
prion
Integer overflow
2022-12-06 16:15:00
cvelist
cvelist
CVE-2022-41325
2022-12-06 00:00:00
ubuntucve
ubuntucve
CVE-2022-41325
2022-12-06 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5297-1)
2022-12-07 00:00:00
Debian: Security Advisory (DLA-3216-1)
2022-12-03 00:00:00
openSUSE: Security Advisory for vlc (openSUSE-SU-2023:0366-1)
2024-03-04 00:00:00
alpinelinux
alpinelinux
CVE-2022-41325
2022-12-06 16:15:11
ubuntu
ubuntu
VLC media player vulnerabilities
2023-06-20 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.2%
Related for DEBIANCVE:CVE-2022-41325