CVE-2021-35346

tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function HevcSpsUnit::short_term_ref_pic_set(int) in hevc.cpp.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
VendorProductVersion
tsmuxer_projecttsmuxer
2.6.16
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/justdan96/tsMuxer/issues/436
https://github.com/justdan96/tsMuxer/pull/422/files
https://github.com/justdan96/tsMuxer/issues/436
https://github.com/justdan96/tsMuxer/pull/422/files