📦

flite

Vendor: cmu

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 2 Total Indexed
Avg. EPSS 0.06% Exploit Prob.
Latest CVE CVE-2014-0027 Jan 26

Security Vulnerability Index

Page 1 / 1
3.3 CVSS
CVE-2014-0027

The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information.

EPSS: 0.06%