Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg ffmpeg 2.3 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-17081
The gmc_mmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote malicious users to cause a denial of service (integer signedness error and out-of-array read) via a crafted MPEG file.
Ffmpeg Ffmpeg 3.4
5.5
CVSSv3
CVE-2016-1897
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file.
Ffmpeg Ffmpeg 2.2.12
Ffmpeg Ffmpeg 2.4.11
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.6.3
Ffmpeg Ffmpeg 2.2.8
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.4.4
Ffmpeg Ffmpeg 2.0.7
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.6.6
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.1.6
Ffmpeg Ffmpeg 2.2.6
Ffmpeg Ffmpeg 2.4.9
Ffmpeg Ffmpeg 2.7.1
Ffmpeg Ffmpeg 2.2.3
Ffmpeg Ffmpeg 2.4.6
Ffmpeg Ffmpeg 2.5.6
Ffmpeg Ffmpeg 2.3.5
2 Github repositories
5.5
CVSSv3
CVE-2016-1898
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file.
Ffmpeg Ffmpeg 2.2.12
Ffmpeg Ffmpeg 2.4.11
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.6.3
Ffmpeg Ffmpeg 2.2.8
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.4.4
Ffmpeg Ffmpeg 2.0.7
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.6.6
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.1.6
Ffmpeg Ffmpeg 2.2.6
Ffmpeg Ffmpeg 2.4.9
Ffmpeg Ffmpeg 2.7.1
Ffmpeg Ffmpeg 2.2.3
Ffmpeg Ffmpeg 2.4.6
Ffmpeg Ffmpeg 2.5.6
Ffmpeg Ffmpeg 2.3.5
1 Github repository
NA
CVE-2014-9316
The mjpeg_decode_app function in libavcodec/mjpegdec.c in FFMpeg prior to 2.1.6, 2.2.x up to and including 2.3.x, and 2.4.x prior to 2.4.4 allows remote malicious users to cause a denial of service (out-of-bounds heap access) and possibly have other unspecified impact via vectors...
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.3.5
Ffmpeg Ffmpeg 2.4.3
Ffmpeg Ffmpeg 2.4.2
Ffmpeg Ffmpeg 2.3.2
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 2.3.4
Ffmpeg Ffmpeg 2.4
NA
CVE-2014-9318
The raw_decode function in libavcodec/rawdec.c in FFMpeg prior to 2.1.6, 2.2.x up to and including 2.3.x, and 2.4.x prior to 2.4.4 allows remote malicious users to cause a denial of service (out-of-bounds heap access) and possibly have other unspecified impact via a crafted .cine...
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.3.5
Ffmpeg Ffmpeg 2.4.3
Ffmpeg Ffmpeg 2.4.2
Ffmpeg Ffmpeg 2.3.2
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 2.3.4
Ffmpeg Ffmpeg 2.4
NA
CVE-2014-9319
The ff_hevc_decode_nal_sps function in libavcodec/hevc_ps.c in FFMpeg prior to 2.1.6, 2.2.x up to and including 2.3.x, and 2.4.x prior to 2.4.4 allows remote malicious users to cause a denial of service (out-of-bounds access) via a crafted .bit file.
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.3.5
Ffmpeg Ffmpeg 2.4.3
Ffmpeg Ffmpeg 2.4.2
Ffmpeg Ffmpeg 2.3.2
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 2.3.4
Ffmpeg Ffmpeg 2.4
NA
CVE-2014-9317
The decode_ihdr_chunk function in libavcodec/pngdec.c in FFMpeg prior to 2.1.6, 2.2.x up to and including 2.3.x, and 2.4.x prior to 2.4.4 allows remote malicious users to cause a denial of service (out-of-bounds heap access) and possibly have other unspecified impact via an IDAT ...
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.3.5
Ffmpeg Ffmpeg 2.4.3
Ffmpeg Ffmpeg 2.4.2
Ffmpeg Ffmpeg 2.3.2
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 2.3.4
Ffmpeg Ffmpeg 2.4
NA
CVE-2014-8545
libavcodec/pngdec.c in FFmpeg prior to 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted PNG...
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.2.6
NA
CVE-2014-8541
libavcodec/mjpegdec.c in FFmpeg prior to 2.4.2 considers only dimension differences, and not bits-per-pixel differences, when determining whether an image size has changed, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have un...
Canonical Ubuntu Linux 12.04
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
NA
CVE-2014-8543
libavcodec/mmvideo.c in FFmpeg prior to 2.4.2 does not consider all lines of HHV Intra blocks during validation of image height, which allows remote malicious users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted MM video ...
Canonical Ubuntu Linux 12.04
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 1.2.5
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 0.11.4
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 0.11.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 1.1.10
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 1.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »