Vulnerabilities in VideoLAN
8 resultsCVE-2017-8311—Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attaEPSS 8.8%CVE-2024-1580MEDIUMInteger overflow in VideoLAN dav1dEPSS 1.8%CVE-2017-8313—Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyEPSS 1.5%CVE-2017-8312—Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data viEPSS 1.4%CVE-2017-8310—Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data EPSS 1.3%CVE-2025-51602MEDIUMmmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMEPSS 0.4%CVE-2026-26227MEDIUMVLC for Android < 3.7.0 Remote Access OTP Authentication BypassEPSS 0.3%CVE-2026-26228LOWVLC for Android < 3.7.0 Remote Access Path TraversalEPSS 0.3%