Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg ffmpeg 2.1.5 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2014-4610
Integer overflow in the get_len function in libavutil/lzo.c in FFmpeg prior to 0.10.14, 1.1.x prior to 1.1.12, 1.2.x prior to 1.2.7, 2.0.x prior to 2.0.5, 2.1.x prior to 2.1.5, and 2.2.x prior to 2.2.4 allows remote malicious users to execute arbitrary code via a crafted Literal ...
Ffmpeg Ffmpeg
5.5
CVSSv3
CVE-2016-1897
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file.
Ffmpeg Ffmpeg 2.7.4
Ffmpeg Ffmpeg 2.7.3
Ffmpeg Ffmpeg 2.6.2
Ffmpeg Ffmpeg 2.6.1
Ffmpeg Ffmpeg 2.5.4
Ffmpeg Ffmpeg 2.5.3
Ffmpeg Ffmpeg 2.4.9
Ffmpeg Ffmpeg 2.4.8
Ffmpeg Ffmpeg 2.4
Ffmpeg Ffmpeg 2.3.6
Ffmpeg Ffmpeg 2.2.16
Ffmpeg Ffmpeg 2.2.15
Ffmpeg Ffmpeg 2.2.8
Ffmpeg Ffmpeg 2.2.7
Ffmpeg Ffmpeg 2.1.8
Ffmpeg Ffmpeg 2.1.7
Ffmpeg Ffmpeg 2.1
Ffmpeg Ffmpeg 2.0.7
Ffmpeg Ffmpeg 2.0
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 2.8.3
Ffmpeg Ffmpeg 2.7.2
2 Github repositories
5.5
CVSSv3
CVE-2016-1898
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file.
Ffmpeg Ffmpeg 2.8.3
Ffmpeg Ffmpeg 2.8.2
Ffmpeg Ffmpeg 2.7
Ffmpeg Ffmpeg 2.6.6
Ffmpeg Ffmpeg 2.5.9
Ffmpeg Ffmpeg 2.5.8
Ffmpeg Ffmpeg 2.5.1
Ffmpeg Ffmpeg 2.5
Ffmpeg Ffmpeg 2.4.5
Ffmpeg Ffmpeg 2.4.4
Ffmpeg Ffmpeg 2.3.4
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.2.13
Ffmpeg Ffmpeg 2.2.12
Ffmpeg Ffmpeg 2.2.11
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.2.3
Ffmpeg Ffmpeg 2.1.5
Ffmpeg Ffmpeg 2.1.4
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.0.3
Ffmpeg Ffmpeg 2.8.1
1 Github repository
NA
CVE-2014-8541
libavcodec/mjpegdec.c in FFmpeg prior to 2.4.2 considers only dimension differences, and not bits-per-pixel differences, when determining whether an image size has changed, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have un...
Canonical Ubuntu Linux 12.04
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
NA
CVE-2014-8543
libavcodec/mmvideo.c in FFmpeg prior to 2.4.2 does not consider all lines of HHV Intra blocks during validation of image height, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted MM video ...
Canonical Ubuntu Linux 12.04
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
NA
CVE-2014-8544
libavcodec/tiff.c in FFmpeg prior to 2.4.2 does not properly validate bits-per-pixel fields, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted TIFF data.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.2.6
NA
CVE-2014-8547
libavcodec/gifdec.c in FFmpeg prior to 2.4.2 does not properly compute image heights, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted GIF data.
Canonical Ubuntu Linux 12.04
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
NA
CVE-2014-8548
Off-by-one error in libavcodec/smc.c in FFmpeg prior to 2.4.2 allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted Quicktime Graphics (aka SMC) video data.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.2.6
NA
CVE-2014-8549
libavcodec/on2avc.c in FFmpeg prior to 2.4.2 does not constrain the number of channels to at most 2, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted On2 data.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.2.6
NA
CVE-2014-8545
libavcodec/pngdec.c in FFmpeg prior to 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted PNG...
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.2.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »