Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg ffmpeg 2.8.3 vulnerabilities and exploits
(subscribe to this query)
8.3
CVSSv3
CVE-2015-8663
The ff_get_buffer function in libavcodec/utils.c in FFmpeg prior to 2.8.4 preserves width and height values after a failure, which allows remote malicious users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .mov ...
Ffmpeg Ffmpeg 2.8.3
7.8
CVSSv3
CVE-2017-9996
The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x prior to 2.8.12, 3.0.x prior to 3.0.8, 3.1.x prior to 3.1.8, 3.2.x prior to 3.2.5, and 3.3.x prior to 3.3.1 does not exclude the CHUNKY format, which allows remote malicious users to cause a denial of service (he...
Ffmpeg Ffmpeg 3.1.3
Ffmpeg Ffmpeg 3.2
Ffmpeg Ffmpeg 3.1.1
Ffmpeg Ffmpeg 3.0.1
Ffmpeg Ffmpeg 3.0.2
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 3.1.4
Ffmpeg Ffmpeg 2.8.8
Ffmpeg Ffmpeg 3.2.4
Ffmpeg Ffmpeg 3.1.7
Ffmpeg Ffmpeg 2.8.9
Ffmpeg Ffmpeg 3.1.6
Ffmpeg Ffmpeg 2.8.5
Ffmpeg Ffmpeg 2.8.2
Ffmpeg Ffmpeg 2.8.1
Ffmpeg Ffmpeg 3.0.5
Ffmpeg Ffmpeg 2.8.11
Ffmpeg Ffmpeg 3.1.5
Ffmpeg Ffmpeg 2.8.10
Ffmpeg Ffmpeg 3.0.3
Ffmpeg Ffmpeg 2.8.6
Ffmpeg Ffmpeg 3.2.1
5.5
CVSSv3
CVE-2016-1897
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file.
Ffmpeg Ffmpeg 2.2.12
Ffmpeg Ffmpeg 2.4.11
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.6.3
Ffmpeg Ffmpeg 2.2.8
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.4.4
Ffmpeg Ffmpeg 2.0.7
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.6.6
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.1.6
Ffmpeg Ffmpeg 2.2.6
Ffmpeg Ffmpeg 2.4.9
Ffmpeg Ffmpeg 2.7.1
Ffmpeg Ffmpeg 2.2.3
Ffmpeg Ffmpeg 2.4.6
Ffmpeg Ffmpeg 2.5.6
Ffmpeg Ffmpeg 2.3.5
2 Github repositories
5.5
CVSSv3
CVE-2016-1898
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file.
Ffmpeg Ffmpeg 2.2.12
Ffmpeg Ffmpeg 2.4.11
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.6.3
Ffmpeg Ffmpeg 2.2.8
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.4.4
Ffmpeg Ffmpeg 2.0.7
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.6.6
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.1.6
Ffmpeg Ffmpeg 2.2.6
Ffmpeg Ffmpeg 2.4.9
Ffmpeg Ffmpeg 2.7.1
Ffmpeg Ffmpeg 2.2.3
Ffmpeg Ffmpeg 2.4.6
Ffmpeg Ffmpeg 2.5.6
Ffmpeg Ffmpeg 2.3.5
1 Github repository
8.3
CVSSv3
CVE-2015-8661
The h264_slice_header_init function in libavcodec/h264_slice.c in FFmpeg prior to 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote malicious users to cause a denial of service (out-of-bounds array access) or poss...
Ffmpeg Ffmpeg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started