CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mackron: >> Miniaudio >> 0.10.35 Security Vulnerabilities

CVE-2026-32837

miniaudio version 0.11.25 and earlier contain a heap out-of-bounds read vulnerability in the WAV BEXT metadata parser that allows attackers to trigger memory access violations by processing crafted WAV files. Attackers can exploit improper null-termination handling in the coding history field to cause out-of-bounds reads past the allocated metadata pool, resulting in application crashes or denial of service.

CVSS Score

5.1

EPSS Score

0.0

Published

2026-03-17

CVE-2021-34184

Miniaudio 0.10.35 has a Double free vulnerability that could cause a buffer overflow in ma_default_vfs_close__stdio in miniaudio.h.

CVSS Score

9.8

EPSS Score

0.004

Published

2021-06-25

CVE-2021-34185

Miniaudio 0.10.35 has an integer-based buffer overflow caused by an out-of-bounds left shift in drwav_bytes_to_u32 in miniaudio.h

CVSS Score

7.8

EPSS Score

0.002

Published

2021-06-25

Page 1

Vulnerabilities

Vulnerable Software

Mackron: >> Miniaudio >> 0.10.35 Security Vulnerabilities

Products

Pricing

Contact Us