CVE-2022-50798
Unknown
Unknown - Not Provided
Division by Zero in SoX 14.4.2 WAV Processing Causes Crashes
Publication date: 2025-12-30
Last updated on: 2025-12-30
Assigner: VulnCheck
Description
Description
SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sox | sox | 14.4.2 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-369 | The product divides a value by zero. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in SoX 14.4.2 is a division by zero error that occurs when processing WAV files. Specifically, if an attacker provides a specially crafted WAV file, it can cause arithmetic errors during sound file processing, leading to a floating point exception and program crashes.
How can this vulnerability impact me? :
The vulnerability can cause the SoX program to crash when processing maliciously crafted WAV files. This could lead to denial of service or disruption of audio processing tasks.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70