CVE-2024-50986
- EPSS 8.3%
- Veröffentlicht 15.11.2024 15:15:07
- Zuletzt bearbeitet 07.07.2025 17:03:46
An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file.
CVE-2021-40826
- EPSS 0.37%
- Veröffentlicht 15.12.2021 07:15:07
- Zuletzt bearbeitet 21.11.2024 06:24:51
Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation, affecting the MP3 file parsing functionality at clementine+0x3aa207. The vulnerability is triggered when the user opens a crafted MP3 file or loads a remote st...
CVE-2021-40827
- EPSS 0.37%
- Veröffentlicht 15.12.2021 07:15:07
- Zuletzt bearbeitet 21.11.2024 06:24:51
Clementine Music Player through 1.3.1 (when a GLib 2.0.0 DLL is used) is vulnerable to a Read Access Violation on Block Data Move, affecting the MP3 file parsing functionality at memcpy+0x265. The vulnerability is triggered when the user opens a craf...
CVE-2018-14332
- EPSS 0.07%
- Veröffentlicht 19.07.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:48:50
An issue was discovered in Clementine Music Player 1.3.1. Clementine.exe is vulnerable to a user mode write access violation due to a NULL pointer dereference in the Init call in the MoodbarPipeline::NewPadCallback function in moodbar/moodbarpipeline...