This page lists publicly disclosed CVE vulnerabilities affecting csounds csound (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2012-0270 | Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c. | [email protected] | 7.5 | 75.45% | 2014-02-17 | 2026-04-29 |
| CVE-2012-2108 | Stack-based buffer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file. | [email protected] | 9.3 | 5.81% | 2014-02-04 | 2026-04-29 |
| CVE-2012-2107 | Integer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow. | [email protected] | 9.3 | 5.13% | 2014-02-04 | 2026-04-29 |
| CVE-2012-2106 | Integer overflow in the pv_import function in util/pv_import.c in Csound 5.16.6, when converting a file, allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow. | [email protected] | 9.3 | 4.79% | 2014-02-04 | 2026-04-29 |