Vulnerabilities > Videolan > VLC Media Player > 3.0.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-06-13 | CVE-2019-5439 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Videolan VLC Media Player A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit. | 4.3 |
2018-12-05 | CVE-2018-19857 | Access of Uninitialized Pointer vulnerability in multiple products The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk() cast converts a return value to an unsigned int even if that value is negative. | 9.1 |