CVE-2023-26923

Description

Musescore 3.0 to 4.0.1 has a stack buffer overflow vulnerability that occurs when reading misconfigured midi files. If attacker can additional information, attacker can execute arbitrary code.

Related CPE's

References

https://github.com/musescore/MuseScore/issues/16346

CvssV3 impact

CvssV2 impact