Every CVE whose affected-product data names Audacityteam Audacity, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2009-0490 — CVSS 9.3 (critical): Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other…
CVE-2017-1000010 — CVSS 7.8 (high): Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting arbitrary code execution.
CVE-2016-2540 — CVSS 5.5 (medium): Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted…
CVE-2016-2541 — CVSS 5.5 (medium): Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file.
CVE-2007-6061 — CVSS 5.0 (medium): Audacity 1.3.2 creates a temporary directory with a predictable name without checking for previous existence of that directory, which…
CVE-2020-11867 — CVSS 3.3 (low): Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets…