Mindwerks Wildmidi vulnerabilities
5 known vulnerabilities affecting mindwerks/wildmidi.
Total CVEs
5
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2017-11661P3HIGHCVSS 7.5PoCv0.4.22017-08-17
CVE-2017-11661 [HIGH] CWE-125 CVE-2017-11661: The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of serv
The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
nvdosv
CVE-2017-11662P3HIGHCVSS 7.5PoCv0.4.22017-08-17
CVE-2017-11662 [HIGH] CWE-125 CVE-2017-11662: The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid m
The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
nvdosv
CVE-2017-11664P3MEDIUMCVSS 6.5PoCv0.4.22017-08-17
CVE-2017-11664 [MEDIUM] CWE-125 CVE-2017-11664: The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of serv
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
nvdosv
CVE-2017-11663P4MEDIUMCVSS 6.5PoCv0.4.22017-08-17
CVE-2017-11663 [MEDIUM] CWE-125 CVE-2017-11663: The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of serv
The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
nvdosv
CVE-2017-1000418P4HIGHCVSS 7.8≤ 0.4.12018-01-02
CVE-2017-1000418 [HIGH] CWE-119 CVE-2017-1000418: The WildMidi_Open function in WildMIDI since commit d8a466829c67cacbb1700beded25c448d99514e5 allows
The WildMidi_Open function in WildMIDI since commit d8a466829c67cacbb1700beded25c448d99514e5 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
nvdosv