Aggregates CVE and security vulnerability intelligence across all espeak-ng-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk buffer overflow, vendor risk memory corruption, and vendor risk path handling; exposure may include vendor impact application crash in vendor surface software deployment contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-49994 | Espeak-ng 1.52-dev was discovered to contain a Floating Point Exception via the function PeaksToHarmspect at wavegen.c. | [email protected] | 5.5 | 0.03% | 2023-12-12 | 2025-11-04 |
| CVE-2023-49993 | Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c. | [email protected] | 5.3 | 0.02% | 2023-12-12 | 2025-11-04 |
| CVE-2023-49992 | Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Overflow via the function RemoveEnding at dictionary.c. | [email protected] | 5.3 | 0.02% | 2023-12-12 | 2025-11-04 |
| CVE-2023-49991 | Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c. | [email protected] | 5.3 | 0.02% | 2023-12-12 | 2025-11-04 |
| CVE-2023-49990 | Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c. | [email protected] | 5.3 | 0.02% | 2023-12-12 | 2025-11-04 |
| CVE-2023-4990 | Directory traversal vulnerability in MCL-Net versions prior to 4.6 Update Package (P01) may allow attackers to read arbitrary files. | [email protected] | 8.3 | 0.20% | 2023-10-11 | 2025-05-01 |