Vulnerabilities > Audiocoding > Freeware Advanced Audio Decoder 2 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-18 | CVE-2018-20197 | Out-of-bounds Write vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8 There is a stack-based buffer underflow in the third instance of the calculate_gain function in libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 6.8 |
| 2018-12-18 | CVE-2018-20196 | Out-of-bounds Write vulnerability in multiple products There is a stack-based buffer overflow in the third instance of the calculate_gain function in libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 6.8 |
| 2018-12-18 | CVE-2018-20195 | NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8 A NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 4.3 |
| 2018-12-18 | CVE-2018-20194 | Out-of-bounds Write vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8 There is a stack-based buffer underflow in the third instance of the calculate_gain function in libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. | 6.8 |
| 2018-11-23 | CVE-2018-19504 | NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.1 An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.1. | 6.8 |
| 2018-11-23 | CVE-2018-19503 | Out-of-bounds Write vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.1 An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.1. | 6.8 |
| 2018-11-23 | CVE-2018-19502 | Out-of-bounds Write vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.1 An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.1. | 6.8 |
| 2017-06-27 | CVE-2017-9223 | Out-of-bounds Read vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted mp4 file. | 4.3 |
| 2017-06-27 | CVE-2017-9221 | Out-of-bounds Read vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_mdhd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted mp4 file. | 4.3 |
| 2017-06-27 | CVE-2017-9220 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.7 The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (memory allocation error) via a crafted mp4 file. | 4.3 |