The popular multimedia software VLC Media Player has a critical software vulnerability that could put millions of users at risk, security researchers have warned. Researchers at Germany's CERT-Bund said they have detected a major security flaw in the video player, which has been downloaded billions of times around the world, which could allow hackers to gain access to the computers of the users. . Although the vulnerability has not yet been publicly exploited to date, it poses a growing threat to users of popular software.
roundabout
According to CERT-Bund, this flaw allows for remote code execution, unauthorized modification and disclosure of data/files, as well as general service interruption, meaning users can see their devices hacked and forced to run malicious code. . Known as CVE-2019-13615, this vulnerability is found in the latest version of the software, VLC Media Player, version 3.0.7.1, and has a rating of 9.8 in the NIST National Vulnerability Database. which means it can be described as "critical". The issue has been reported on Windows, Linux, and UNIX versions of VLC, but the macOS version does not appear to be affected. VideoLAN, the non-profit organization behind VLC Media Player, said it has been working on a fix for the glitch for the past four weeks, with 60% success rate. Last month, VideoLAN released the biggest security update for VLC Media Player in the program's history. The update included fixes for a total of 33 vulnerabilities, including two critical vulnerabilities, 21 medium vulnerabilities, and 10 vulnerabilities.