Vulnerability Details : CVE-2022-4246
A vulnerability classified as problematic has been found in Kakao PotPlayer. This affects an unknown part of the component MID File Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-214623.
Vulnerability category: Denial of service
Products affected by CVE-2022-4246
- cpe:2.3:a:kakaocorp:potplayer:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-4246
0.11%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 44 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-4246
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
2.8
|
1.4
|
VulDB | |
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2022-4246
-
The product does not release or incorrectly releases a resource before it is made available for re-use.Assigned by: cna@vuldb.com (Primary)
References for CVE-2022-4246
-
https://seclists.org/fulldisclosure/2022/Nov/att-16/potplayer_7z.bin
Third Party Advisory
-
https://seclists.org/fulldisclosure/2022/Nov/16
Full Disclosure: crashing potplayer againMailing List;Third Party Advisory
-
https://vuldb.com/?id.214623
CVE-2022-4246 | Kakao PotPlayer MID File denial of serviceThird Party Advisory
Jump to