{"id":"CVE-2019-14493","details":"An issue was discovered in OpenCV before 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at modules/core/src/persistence.cpp.","aliases":["GHSA-3448-vrgh-85xr"],"modified":"2026-05-18T17:42:27.221134Z","published":"2019-08-01T17:15:13.593Z","database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","cpes":["cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"],"vendor_product":"debian:debian_linux","extracted_events":[{"last_affected":"9.0"}]}]},"references":[{"type":"ADVISORY","url":"https://github.com/opencv/opencv/compare/371bba8...ddbd10c"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html"},{"type":"EVIDENCE","url":"https://github.com/opencv/opencv/issues/15127"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/opencv/opencv","events":[{"introduced":"0"},{"fixed":"693877212d34f2d5e3bbf29287aa1db2d07d4d6d"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"4.1.1"}],"cpe":"cpe:2.3:a:opencv:opencv:*:*:*:*:*:*:*:*"}}],"versions":["3.4.0-rc","3.3.0-rc","3.2.0-rc","2.2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-14493.json","vanir_signatures_modified":"2026-05-18T17:42:27Z","vanir_signatures":[{"signature_version":"v1","deprecated":false,"signature_type":"Line","target":{"file":"modules/videoio/src/backend_plugin.cpp"},"id":"CVE-2019-14493-f4b69b89","digest":{"threshold":0.9,"line_hashes":["324810334612706110929790317977131335514","283354122908894961945064184555133515053","29337495017562247810249731437058366319","15156896965861494906414910206189503336"]},"source":"https://github.com/opencv/opencv/commit/693877212d34f2d5e3bbf29287aa1db2d07d4d6d"}]}},{"ranges":[{"type":"GIT","repo":"https://github.com/opencv/opencv_contrib","events":[{"introduced":"0"},{"fixed":"0915b7eaddba3c06d83e201c9a7595e73801f417"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"4.1.1"}],"cpe":"cpe:2.3:a:opencv:opencv:*:*:*:*:*:*:*:*"}}],"versions":["4.1.0","4.0.1","4.0.0","4.0.0-rc","4.0.0-beta","4.0.0-alpha","3.4.1","3.4.0","3.3.1","3.3.0","3.3.0-rc","3.2.0","3.2.0-rc","3.1.0","3.0.0","3.0.0-rc1","3.0.0-beta"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-14493.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}