TagLib before 2.0 allows a segmentation violation and application crash during tag writing via a crafted WAV file in which an id3 chunk is the only valid chunk. Rated low severity (CVSS 2.9), this vulnerability is no authentication required. Public exploit code available.
Null Pointer Dereference
Denial Of Service
Taglib
NVD
GitHub
CVSS 3.1
2.9
EPSS
0.0%
An issue has been discovered in GitLab CE/EE affecting all versions from 18.0 before 18.0.1. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Information Disclosure
Gitlab
NVD
CVSS 3.1
2.7
EPSS
0.1%