Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-12284
cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.
Ffmpeg Ffmpeg 4.1
Ffmpeg Ffmpeg 4.2.2
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Debian Debian Linux 10.0
10
CVSSv2
CVE-2013-0864
The gif_copy_img_rect function in libavcodec/gifdec.c in FFmpeg prior to 1.1.2 performs an incorrect calculation for an "end pointer," which allows remote malicious users to have an unspecified impact via crafted GIF data that triggers an out-of-bounds array access.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
10
CVSSv2
CVE-2013-0873
The read_header function in libavcodec/shorten.c in FFmpeg prior to 1.1.3 allows remote malicious users to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
10
CVSSv2
CVE-2013-4265
The av_reallocp_array function in libavutil/mem.c in FFmpeg prior to 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference.
Ffmpeg Ffmpeg 0.8.8
Ffmpeg Ffmpeg 0.8.7
Ffmpeg Ffmpeg 0.8.10
Ffmpeg Ffmpeg 0.8.1
Ffmpeg Ffmpeg 0.7.4
Ffmpeg Ffmpeg 0.7.3
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.6
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.0
Ffmpeg Ffmpeg 0.3.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.10
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.7.8
Ffmpeg Ffmpeg 0.7.7
10
CVSSv2
CVE-2013-0872
The swr_init function in libswresample/swresample.c in FFmpeg prior to 1.1.3 allows remote malicious users to have an unspecified impact via an invalid or unsupported (1) input or (2) output channel layout, related to an out-of-bounds array access.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
10
CVSSv2
CVE-2011-3937
The H.263 codec (libavcodec/h263dec.c) in FFmpeg 0.7.x prior to 0.7.12, 0.8.x prior to 0.8.11, and unspecified versions prior to 0.10, and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1 has unspecified impact and attack vectors...
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
Ffmpeg Ffmpeg 0.3.1
Ffmpeg Ffmpeg 0.7.3
10
CVSSv2
CVE-2012-2776
Unspecified vulnerability in the decode_cell_data function in libavcodec/indeo3.c in FFmpeg prior to 0.11 and Libav 0.8.x prior to 0.8.4 has unknown impact and attack vectors, related to an "out of picture write."
Libav Libav 0.8
Libav Libav 0.8.1
Libav Libav 0.8.2
Libav Libav 0.8.3
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
10
CVSSv2
CVE-2012-2782
Unspecified vulnerability in the decode_slice_header function in libavcodec/h264.c in FFmpeg prior to 0.11 has unknown impact and attack vectors, related to a "rejected resolution change."
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
10
CVSSv2
CVE-2012-2785
Multiple unspecified vulnerabilities in libavcodec/wmalosslessdec.c in FFmpeg prior to 0.11 have unknown impact and attack vectors, related to (1) "some subframes only encode some channels" or (2) a large order value.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
10
CVSSv2
CVE-2012-2787
Unspecified vulnerability in the decode_frame function in libavcodec/indeo4.c in FFmpeg prior to 0.11 and Libav 0.8.x prior to 0.8.4 has unknown impact and attack vectors, related to the "setup width/height."
Libav Libav 0.8
Libav Libav 0.8.1
Libav Libav 0.8.2
Libav Libav 0.8.3
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »