CVE-2020-22219

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 22, 2023

Updated: Nov 7, 2023

CWE ID 120

Summary

CVE-2020-22219 is a buffer overflow vulnerability affecting the FLAC library before version 1.4.0. An attacker can exploit this issue by supplying specially crafted input to the encoder. The vulnerability resides in the function "bitwriter_grow_" and allows an attacker to execute arbitrary code. This issue poses a significant risk as it can be exploited remotely. System administrators and users should promptly update their FLAC installations to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbEj8M
https://www.cve.org/CVERecord?id=CVE-2020-22219
https://nvd.nist.gov/vuln/detail/CVE-2020-22219

Back to Vulnerability Database

CVE-2020-22219

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations