10cksYiqiyinHangzhouTechnology

8 exploits Active since Feb 2023
CVE-2023-1010 WRITEUP MEDIUM WRITEUP
vox2png 1.0 - Heap-based Buffer Overflow in vox2png.c
A vulnerability classified as critical was found in vox2png 1.0. Affected by this vulnerability is an unknown functionality of the file vox2png.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221743.
CVSS 5.3
CVE-2023-1157 WRITEUP LOW WORKING POC
elf-parser - Denial of Service in get_segments Function
A vulnerability, which was classified as problematic, was found in finixbit elf-parser. Affected is the function elf_parser::Elf_parser::get_segments of the file elf_parser.cpp. The manipulation leads to denial of service. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. VDB-222222 is the identifier assigned to this vulnerability.
CVSS 2.8
CVE-2023-1190 WRITEUP MEDIUM WRITEUP
imageinfo < 3.0.3 - Buffer Overflow in imageinfo.hpp
A vulnerability was found in xiaozhuai imageinfo up to 3.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the file imageinfo.hpp. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. VDB-222362 is the identifier assigned to this vulnerability.
CVSS 4.8
CVE-2023-1450 WRITEUP LOW WRITEUP
MP4v2 2.1.2 - Denial of Service
A vulnerability was found in MP4v2 2.1.2 and classified as problematic. This issue affects the function DumpTrack of the file mp4trackdump.cpp. The manipulation leads to denial of service. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-223295.
CVSS 3.3
CVE-2023-1560 WRITEUP LOW WORKING POC
TinyTIFF 3.0.0.0 - Buffer Overflow in File Handler
A vulnerability, which was classified as problematic, has been found in TinyTIFF 3.0.0.0. This issue affects some unknown processing of the file tinytiffreader.c of the component File Handler. The manipulation leads to buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-223553 was assigned to this vulnerability.
CVSS 2.8
CVE-2023-1570 WRITEUP LOW WRITEUP
syoyo tinydng - Heap-Based Buffer Overflow
A vulnerability, which was classified as problematic, has been found in syoyo tinydng. Affected by this issue is the function __interceptor_memcpy of the file tiny_dng_loader.h. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. It is recommended to apply a patch to fix this issue. VDB-223562 is the identifier assigned to this vulnerability.
CVSS 3.3
CVE-2023-26733 WRITEUP HIGH WRITEUP
tinytiff 3.0 - Denial of Service via TinyTiffReader_readNextFrame Buffer Overflow
Buffer Overflow vulnerability found in tinyTIFF v.3.0 allows a local attacker to cause a denial of service via the TinyTiffReader_readNextFrame function in tinytiffreader.c file.
CVSS 7.8
CVE-2023-27754 WRITEUP MEDIUM WRITEUP
vox2mesh 1.0 - Stack Overflow via Incorrect memcpy Usage
vox2mesh 1.0 has stack-overflow in main.cpp, this is stack-overflow caused by incorrect use of memcpy() funciton. The flow allows an attacker to cause a denial of service (abort) via a crafted file.
CVSS 5.5