Vulnerabilities > Realnetworks

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-05	CVE-2022-32291	Unspecified vulnerability in Realnetworks Realplayer In Real Player through 20.1.0.312, attackers can execute arbitrary code by placing a UNC share pathname (for a DLL file) in a RAM file. network low complexity realnetworks	8.8
2022-06-03	CVE-2022-32269	Cross-site Scripting vulnerability in Realnetworks Realplayer 20.0.8.310 In Real Player 20.0.8.310, the G2 Control allows injection of unsafe javascript: URIs in local HTTP error pages (displayed by Internet Explorer core). network low complexity realnetworks CWE-79 critical	9.8
2022-06-03	CVE-2022-32270	Path Traversal vulnerability in Realnetworks Realplayer 20.0.7.309/20.0.8.310 In Real Player 20.0.7.309 and 20.0.8.310, external::Import() allows download of arbitrary file types and Directory Traversal, leading to Remote Code Execution. network low complexity realnetworks CWE-22 critical	9.8
2022-06-03	CVE-2022-32271	Cross-site Scripting vulnerability in Realnetworks Realplayer 20.0.8.310 In Real Player 20.0.8.310, there is a DCP:// URI Remote Arbitrary Code Execution Vulnerability. network low complexity realnetworks CWE-79 critical	9.6
2018-07-03	CVE-2018-13121	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Realnetworks Realone Player 2.0 RealOne Player 2.0 Build 6.0.11.872 allows remote attackers to cause a denial of service (array out-of-bounds access and application crash) via a crafted .aiff file. local low complexity realnetworks CWE-119	5.5
2017-05-29	CVE-2017-9302	Divide By Zero vulnerability in Realnetworks Realplayer 16.0.2.32 RealPlayer 16.0.2.32 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp4 file. local low complexity realnetworks CWE-369	5.5
2016-10-28	CVE-2016-9018	NULL Pointer Dereference vulnerability in Realnetworks Realplayer 18.1.5.705 Improper handling of a repeating VRAT chunk in qcpfformat.dll allows attackers to cause a Null pointer dereference and crash in RealNetworks RealPlayer 18.1.5.705 through a crafted .QCP media file. local low complexity realnetworks CWE-476	5.5
2004-06-01	CVE-2004-0389	NULL Pointer Dereference vulnerability in Realnetworks Helix Universal Server 9.0.1/9.0.2 RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests. network low complexity realnetworks CWE-476	7.5

Vulnerabilities > Realnetworks {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Realnetworks"}]}

Vulnerabilities > Realnetworks