Unrated severityNVD Advisory· Published Nov 7, 2023· Updated Aug 2, 2024

CVE-2023-47359

Description

Videolan VLC prior to version 3.0.20 contains an incorrect offset read that leads to a Heap-Based Buffer Overflow in function GetPacket() and results in a memory corruption.

Affected products

VideoLAN/Vlccpe-rescue

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.debian.org/debian-lts-announce/2023/11/msg00034.htmlmitremailing-list
0xariana.github.io/blog/real_bugs/vlc/mmsmitre

News mentions

ABB Ability Camera Connect
CISA ICS Advisories

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000