cbcvebase.

Csounds Csound vulnerabilities

4 known vulnerabilities affecting csounds/csound.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1

Vulnerabilities

Page 1 of 1
CVE-2012-0270P3HIGHCVSS 7.5PoC≤ 5.16.1v5.12.4+7 more2014-02-17
CVE-2012-0270 [HIGH] CWE-119 CVE-2012-0270: Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbi Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c.
nvdosv
CVE-2012-2106P3CRITICALCVSS 9.3v5.16.62014-02-04
CVE-2012-2106 [CRITICAL] CWE-189 CVE-2012-2106: Integer overflow in the pv_import function in util/pv_import.c in Csound 5.16.6, when converting a f Integer overflow in the pv_import function in util/pv_import.c in Csound 5.16.6, when converting a file, allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
nvdosv
CVE-2012-2107P3CRITICALCVSS 9.3≤ 5.17v5.10+15 more2014-02-04
CVE-2012-2107 [CRITICAL] CWE-189 CVE-2012-2107: Integer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a Integer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
nvdosv
CVE-2012-2108P3CRITICALCVSS 9.3≤ 5.17v5.10+15 more2014-02-04
CVE-2012-2108 [CRITICAL] CWE-119 CVE-2012-2108: Stack-based buffer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when c Stack-based buffer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file.
nvdosv
Csounds Csound vulnerabilities | cvebase