VDB

DEBIAN-CVE-2018-11529

DEBIAN-CVE-2018-11529 PUBLISHED CVSS 8 HIGH

VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions.

Risk Scores

CVSS 3.0
8
CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Debian:12vlc0, 0, 0
Debian:14vlc0, 0, 0
Debian:11vlc0, 0, 0
Debian:13vlc0, 0, 0

Timeline

  • Jul 11, 2018 CVE Published
  • Apr 28, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›