Musescore
1 CVEs
product
Monthly
Musescore 3.0 to 4.0.1 has a stack buffer overflow vulnerability that occurs when reading misconfigured midi files. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.
Memory Corruption
Buffer Overflow
RCE
Musescore
NVD
GitHub
CVSS 3.1
7.0
EPSS
0.4%
EPSS 0%
CVSS 7.0
HIGH
POC
This Week
Musescore 3.0 to 4.0.1 has a stack buffer overflow vulnerability that occurs when reading misconfigured midi files. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.
Memory Corruption
Buffer Overflow
RCE
+1
NVD
GitHub