CVE-2021-35346

CRITICAL

tsMuxer 2.6.16 - Heap-Based Buffer Overflow in HevcSpsUnit::short_term_ref_pic_set

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-35346. PoCs published by cemonatk.

AI-analyzed exploit summary This repository contains a detailed technical analysis of CVE-2021-35346, a heap-based buffer overflow in tsMuxer v2.6.16. It includes an AddressSanitizer (ASAN) output, backtrace, and references to the original report and patch, but does not include functional exploit code.

Description

tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function HevcSpsUnit::short_term_ref_pic_set(int) in hevc.cpp.

Exploits (1)

github WRITEUP 3 stars

by cemonatk · poc

https://github.com/cemonatk/onefuzzyway/tree/main/CVEs/tsMuxer/CVE-2021-35346.md

View Code ZIP pw:eip

This repository contains a detailed technical analysis of CVE-2021-35346, a heap-based buffer overflow in tsMuxer v2.6.16. It includes an AddressSanitizer (ASAN) output, backtrace, and references to the original report and patch, but does not include functional exploit code.

Classification

Writeup 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: tsMuxer v2.6.16

No auth needed

Prerequisites: A crafted input file to trigger the heap overflow

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Apr 29, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Third Party Advisory x_refsource_misc

https://github.com/justdan96/tsMuxer/pull/422/files

Exploit, Third Party Advisory x_refsource_misc

https://github.com/justdan96/tsMuxer/issues/436

Scores

CVSS v3 9.8

EPSS 0.0173

EPSS Percentile 74.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (1)

tsmuxer_project/tsmuxer 2.6.16

Published Dec 03, 2021

Tracked Since Feb 18, 2026