Heap-based Buffer Over-read in libebml's FindNextElement

Heap-based Buffer Over-read in libebml's FindNextElement

CVE-2019-13615 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.

Learn more about our Web Application Penetration Testing UK.