Known Vulnerabilities for products from Videolan
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Videolan".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-47360 json | Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect packet length. | 7.5 - HIGH | 2023-11-07 | 2023-12-01 |
| CVE-2023-47359 json | Videolan VLC prior to version 3.0.20 contains an incorrect offset read that leads to a Heap-Based Buffer Overflow in function... | 9.8 - CRITICAL | 2023-11-07 | 2023-12-01 |
| CVE-2023-32570 json | VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode... | 5.9 - MEDIUM | 2023-05-10 | 2023-11-07 |
| CVE-2022-41325 json | An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into... | 7.8 - HIGH | 2022-12-06 | 2022-12-08 |
| CVE-2021-25804 json | A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the applic... | 7.5 - HIGH | 2021-07-26 | 2021-08-04 |
| CVE-2021-25803 json | A buffer overflow vulnerability in the vlc_input_attachment_New component of VideoLAN VLC Media Player 3.0.11 allows attacker... | 7.1 - HIGH | 2021-07-26 | 2022-05-03 |
| CVE-2021-25802 json | A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to ... | 7.1 - HIGH | 2021-07-26 | 2022-05-03 |
| CVE-2021-25801 json | A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause a... | 7.1 - HIGH | 2021-07-26 | 2022-05-03 |
| CVE-2020-26664 json | A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media player 3.0.11 allows attackers to trigger a heap-based buff... | 7.8 - HIGH | 2021-01-08 | 2023-02-03 |
| CVE-2020-13428 json | A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player... | 7.8 - HIGH | 2020-06-08 | 2023-11-07 |
| CVE-2019-19721 json | An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player before 3.0.9 allows remote ... | 7.8 - HIGH | 2020-05-15 | 2023-11-07 |
| CVE-2019-18278 json | When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow startin... | 7.8 - HIGH | 2019-10-23 | 2020-08-24 |
| CVE-2019-14970 json | A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based b... | 7.8 - HIGH | 2019-08-29 | 2020-08-24 |
| CVE-2019-14778 json | The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after... | 7.8 - HIGH | 2019-08-29 | 2020-08-18 |
| CVE-2019-14777 json | The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free. | 7.8 - HIGH | 2019-08-29 | 2020-08-18 |
| CVE-2019-14776 json | A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mk... | 7.8 - HIGH | 2019-08-29 | 2020-08-18 |
| CVE-2019-14535 json | A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result,... | 7.8 - HIGH | 2019-08-29 | 2020-08-18 |
| CVE-2019-14534 json | In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that... | 5.5 - MEDIUM | 2019-08-29 | 2020-08-18 |
| CVE-2019-14533 json | The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free. | 7.8 - HIGH | 2019-08-29 | 2020-08-18 |
| CVE-2019-14498 json | A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FP... | 7.8 - HIGH | 2019-08-29 | 2020-08-18 |
Known software with vulnerabilities from Videolan
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Videolan | Libbluray | - |
| Application | Videolan | Vlc | 2.1.4 |
| Application | Videolan | Vlc For Mobile | 2.7.8 |
| Application | Videolan | Vlc Media Player | - |