Home

CVE-2016-2540

Description

Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.908

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2016-2540,CVE-2016-2541 are affected in Audacity (x64) 2.1.1Windows
Vulnerabilities CVE-2016-2540,CVE-2016-2541 are affected in Audacity 2.1.1Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-342692Audacity (x64) (3.7.0)
PATCH-330532Audacity (3.3.2)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234