Miro

miro

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-23746 1Miro 1Miro Jun 4, 2025 Feb 2, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Miro Desktop 0.8.18 on macOS allows local Electron code injection via a complex series of steps that might be usable in some environments (bypass a kTCCServiceSystemPolicyAppBundles requirement via a file copy, an app.ap...Show more Miro Desktop 0.8.18 on macOS allows local Electron code injection via a complex series of steps that might be usable in some environments (bypass a kTCCServiceSystemPolicyAppBundles requirement via a file copy, an app.app/Contents rename, an asar modification, and a rename back to app.app/Contents).Show less
CVE-2008-0984 2Miro Videolan 2Miro Player Vlc Media Player Apr 23, 2026 Feb 26, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-23746

1Miro

Jun 4, 2025

Feb 2, 2024

N/A· v4

9.8 CRITICAL· v3

N/A· v2

Miro Desktop 0.8.18 on macOS allows local Electron code injection via a complex series of steps that might be usable in some environments (bypass a kTCCServiceSystemPolicyAppBundles requirement via a file copy, an app.ap...Show more

CVE-2008-0984

2Miro

Videolan

2Miro Player

Vlc Media Player

Apr 23, 2026

Feb 26, 2008

N/A· v4

N/A· v3

9.3 HIGH· v2

The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file.