What is CVE-2019-7732?

CVE-2019-7732 is a high-severity vulnerability in Live555 Streaming_media, classified under Missing Release of Memory after Effective Lifetime. CVSS score: 7.5/10. Published 2019-02-11.

How severe is CVE-2019-7732?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Live555 Streaming_media

CVE-2019-7732

In Live555 0.95, a setup packet can cause a memory leak leading to DoS because, when there are multiple instances of a single field (username, realm, nonce, uri, or response), only the last instance can ever be freed.

EPSS: 0.014 (68.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Live555 Streaming_media — versions 0.95
N/a — versions n/a

Weakness classification (CWE)

CWE-401 — Missing Release of Memory after Effective Lifetime

References

cve@mitre.org (Third Party Advisory, x_refsource_MISC)

Frequently asked questions

What is CVE-2019-7732?: CVE-2019-7732 is a high-severity vulnerability in Live555 Streaming_media, classified under Missing Release of Memory after Effective Lifetime. CVSS score: 7.5/10. Published 2019-02-11.
How severe is CVE-2019-7732?: High severity. CVSS v3 base score is 7.5 out of 10.