EPSS
Percentile
75.4%
The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted wav file.
bugzilla.redhat.com/show_bug.cgi?id=1480674