CVE-2022-24902
Memory issue in playing videos
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 2.9EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
05 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
TkVideoplayer is a simple library to play video files in tkinter. Uncontrolled memory consumption in versions of TKVideoplayer prior to 2.0.0 can theoretically lead to performance degradation. There are no known workarounds. This issue has been patched and users are advised to upgrade to version 2.0.0 or later.
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
PaulleDemon · tkVideoPlayer