VYPR
Vendor

Clementine

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2021-40827HigDec 15, 2021
    risk 0.51cvss 7.8epss 0.01

    Clementine Music Player through 1.3.1 (when a GLib 2.0.0 DLL is used) is vulnerable to a Read Access Violation on Block Data Move, affecting the MP3 file parsing functionality at memcpy+0x265. The vulnerability is triggered when the user opens a crafted MP3 file or loads a…

  • CVE-2021-40826HigDec 15, 2021
    risk 0.51cvss 7.8epss 0.01

    Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation, affecting the MP3 file parsing functionality at clementine+0x3aa207. The vulnerability is triggered when the user opens a crafted MP3 file or loads a remote stream URL that is mishandled…

  • CVE-2024-50986HigNov 15, 2024
    risk 0.48cvss 7.3epss 0.01

    An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file.

  • CVE-2018-14332MedJul 19, 2018
    risk 0.36cvss 5.5epss 0.01

    An issue was discovered in Clementine Music Player 1.3.1. Clementine.exe is vulnerable to a user mode write access violation due to a NULL pointer dereference in the Init call in the MoodbarPipeline::NewPadCallback function in moodbar/moodbarpipeline.cpp. The vulnerability is…