CVE-2020-13152
23Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 3.4%
from disclosure to weapon169 days
Published on NVDMay 20
1st PoC+169d
exploitation probability
3.4%top 12% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
A remote user can create a specially crafted M3U file, media playlist file that when loaded by the target user, will trigger a memory leak, whereby Amarok 2.8.0 continue to waste resources over time, eventually allows attackers to cause a denial of service.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/159898/Amarok-2.8.0-Denial-Of-Service.htmlunverifiedexploitdbwww.exploit-db.com/exploits/48993unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.