The host is installed with VideoLAN VLC media player 3.0.11 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in the vlc_input_attachment_New component. Successful exploitation allows attackers to cause an out-of-bounds read via a crafted .avi file.