Vulnerabilities > Wavpack > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-29 | CVE-2018-10539 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. | 5.5 |
| 2018-04-29 | CVE-2018-10538 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in WavPack 5.1.0 and earlier for WAV input. | 5.5 |
| 2018-02-19 | CVE-2018-7254 | Out-of-bounds Read vulnerability in multiple products The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file. | 6.8 |
| 2018-02-19 | CVE-2018-7253 | Out-of-bounds Read vulnerability in multiple products The ParseDsdiffHeaderConfig function of the cli/dsdiff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (heap-based buffer over-read) or possibly overwrite the heap via a maliciously crafted DSDIFF file. | 6.8 |
| 2018-02-06 | CVE-2018-6767 | Out-of-bounds Read vulnerability in multiple products A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service attack or possibly have unspecified other impact via a maliciously crafted RF64 file. | 6.8 |