threat
engine
.sh
Back
·
··:··
Home
/
Product
/
sound exchange project sound exchange
Product
sound exchange project sound exchange
27 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-34432
<= 14.4.3
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lea
7.8
HIGH
CVE-2023-34318
all versions
A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41. This flaw can lead to a
7.8
HIGH
CVE-2023-32627
all versions
A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. This flaw can lea
6.2
MEDIUM
CVE-2023-26590
all versions
A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58. This flaw
6.2
MEDIUM
CVE-2021-33844
all versions
A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a c
5.5
MEDIUM
CVE-2021-23210
all versions
A floating point exception (divide-by-zero) issue was discovered in SoX in functon read_samples() of voc.c file. An attacker with
5.5
MEDIUM
CVE-2021-23172
all versions
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread() in hcom.c file. The vulnerability is
5.5
MEDIUM
CVE-2021-23159
all versions
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulner
5.5
MEDIUM
CVE-2022-31651
all versions
In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a.
5.5
MEDIUM
CVE-2022-31650
all versions
In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a.
5.5
MEDIUM
CVE-2021-3643
all versions
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global-buffer-overflow. This flaw allows an a
9.1
CRITICAL
CVE-2021-40426
all versions
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and m
8.8
HIGH
CVE-2019-1010004
<= 14.4.2
SoX - Sound eXchange 14.4.2 and earlier is affected by: Out-of-bounds Read. The impact is: Denial of Service. The component is: re
5.5
MEDIUM
CVE-2019-13590
all versions
An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h (startread function), there is an integer overflow on the result o
5.5
MEDIUM
CVE-2019-8357
all versions
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference.
5.5
MEDIUM
CVE-2019-8356
all versions
An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write ac
5.5
MEDIUM
CVE-2019-8355
all versions
An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx
5.5
MEDIUM
CVE-2019-8354
all versions
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed
5.0
MEDIUM
CVE-2017-18189
<= 14.4.2
In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corrupt header specifying zero channels triggers an in
7.5
HIGH
CVE-2017-15642
all versions
In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a ma
5.5
MEDIUM
CVE-2017-15372
all versions
There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expand_i function of adpcm.c in Sound eXchange (SoX) 14.4.2. A Cr
5.5
MEDIUM
CVE-2017-15371
all versions
There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound eXchange (SoX) 14.4.2. A Crafted i
5.5
MEDIUM
CVE-2017-15370
all versions
There is a heap-based buffer overflow in the ImaExpandS function of ima_rw.c in Sound eXchange (SoX) 14.4.2. A Crafted input will
5.5
MEDIUM
CVE-2017-11359
all versions
The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-z
5.5
MEDIUM
CVE-2017-11358
all versions
The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (invalid m
5.5
MEDIUM
CVE-2017-11332
all versions
The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zer
5.5
MEDIUM
CVE-2014-8145
<= 14.4.1
Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin