CVE-2019-19721 — Vulnetix

CVE-2019-19721 PUBLISHED CVSS 7.800000190734863 HIGH

An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player before 3.0.9 allows remote attackers to cause a denial of service (memory corruption) via a crafted image file. NOTE: this may be related to the SDL_Image product.

EPSS 1.30% · 80.1th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

1.30%

80.1th percentile

Affected Products

Vendor	Product	Versions
ABB	ABB Ability Camera Connect <=1.5.0.14

Timeline

May 6, 2020 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Feb 27, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 1, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Nov 5, 2022 EPSS Score

References

https://psirt.abb.com/csaf/2025/4hzm000603.json advisory
https://search.abb.com/library/Download.aspx?DocumentID=4HZM000603&LanguageCode=en&DocumentPartId=&Action=Launch advisory
https://nvd.nist.gov/vuln/detail/CVE-2019-19721 advisory

Open in Interactive Console →