Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg ffmpeg vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-22029
A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/vf_colorconstancy.c: in slice_get_derivative, which crossfade_samples_fltp, which might lead to memory corruption and other potential consequences.
Ffmpeg Ffmpeg 4.2
Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2020-22030
A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/af_afade.c in crossfade_samples_fltp, which might lead to memory corruption and other potential consequences.
Ffmpeg Ffmpeg 4.2
Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2020-22031
A Heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/vf_w3fdif.c in filter16_complex_low, which might lead to memory corruption and other potential consequences.
Ffmpeg Ffmpeg 4.2
Debian Debian Linux 9.0
Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2020-22015
Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code.
Ffmpeg Ffmpeg 4.2
Debian Debian Linux 9.0
Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2020-24020
Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnn_execute_layer_pad in libavfilter/dnn/dnn_backend_native_layer_pad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code.
Ffmpeg Ffmpeg 4.2.3
8.8
CVSSv3
CVE-2021-30123
FFmpeg <=4.3 contains a buffer overflow vulnerability in libavcodec through a crafted file that may lead to remote code execution.
Ffmpeg Ffmpeg 4.4
8.8
CVSSv3
CVE-2020-14212
FFmpeg up to and including 4.3 has a heap-based buffer overflow in avio_get_str in libavformat/aviobuf.c because dnn_backend_native.c calls ff_dnn_load_model_native and a certain index check is omitted.
Ffmpeg Ffmpeg
8.8
CVSSv3
CVE-2014-4610
Integer overflow in the get_len function in libavutil/lzo.c in FFmpeg prior to 0.10.14, 1.1.x prior to 1.1.12, 1.2.x prior to 1.2.7, 2.0.x prior to 2.0.5, 2.1.x prior to 2.1.5, and 2.2.x prior to 2.2.4 allows remote malicious users to execute arbitrary code via a crafted Literal ...
Ffmpeg Ffmpeg
8.8
CVSSv3
CVE-2019-15942
FFmpeg up to and including 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.
Ffmpeg Ffmpeg
8.8
CVSSv3
CVE-2019-13312
block_cmp() in libavcodec/zmbvenc.c in FFmpeg 4.1.3 has a heap-based buffer over-read.
Ffmpeg Ffmpeg 4.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »