Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg ffmpeg vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-12284
cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.
Ffmpeg Ffmpeg 4.1
Ffmpeg Ffmpeg 4.2.2
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Debian Debian Linux 10.0
10
CVSSv2
CVE-2013-0864
The gif_copy_img_rect function in libavcodec/gifdec.c in FFmpeg prior to 1.1.2 performs an incorrect calculation for an "end pointer," which allows remote malicious users to have an unspecified impact via crafted GIF data that triggers an out-of-bounds array access.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
10
CVSSv2
CVE-2013-0872
The swr_init function in libswresample/swresample.c in FFmpeg prior to 1.1.3 allows remote malicious users to have an unspecified impact via an invalid or unsupported (1) input or (2) output channel layout, related to an out-of-bounds array access.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
10
CVSSv2
CVE-2013-0873
The read_header function in libavcodec/shorten.c in FFmpeg prior to 1.1.3 allows remote malicious users to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
10
CVSSv2
CVE-2013-4265
The av_reallocp_array function in libavutil/mem.c in FFmpeg prior to 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference.
Ffmpeg Ffmpeg 0.8.8
Ffmpeg Ffmpeg 0.8.7
Ffmpeg Ffmpeg 0.8.10
Ffmpeg Ffmpeg 0.8.1
Ffmpeg Ffmpeg 0.7.4
Ffmpeg Ffmpeg 0.7.3
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.6
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.0
Ffmpeg Ffmpeg 0.3.4
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.10
Ffmpeg Ffmpeg
Ffmpeg Ffmpeg 1.1.2
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.7.8
Ffmpeg Ffmpeg 0.7.7
10
CVSSv2
CVE-2011-3937
The H.263 codec (libavcodec/h263dec.c) in FFmpeg 0.7.x prior to 0.7.12, 0.8.x prior to 0.8.11, and unspecified versions prior to 0.10, and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1 has unspecified impact and attack vectors...
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
Ffmpeg Ffmpeg 0.3.1
Ffmpeg Ffmpeg 0.7.3
10
CVSSv2
CVE-2012-2800
Unspecified vulnerability in the ff_ivi_process_empty_tile function in libavcodec/ivi_common.c in FFmpeg prior to 0.11, and Libav 0.7.x prior to 0.7.7 and 0.8.x prior to 0.8.4, has unknown impact and attack vectors in which the "tile size ... mismatches parameters" and ...
Libav Libav 0.8
Libav Libav 0.8.1
Libav Libav 0.8.2
Libav Libav 0.8.3
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
10
CVSSv2
CVE-2012-2801
Unspecified vulnerability in libavcodec/avs.c in FFmpeg prior to 0.11, and Libav 0.7.x prior to 0.7.7 and 0.8.x prior to 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes."
Libav Libav 0.8
Libav Libav 0.8.1
Libav Libav 0.8.2
Libav Libav 0.8.3
Libav Libav 0.7
Libav Libav 0.7.4
Libav Libav 0.7.1
Libav Libav 0.7.2
Libav Libav 0.7.5
Libav Libav 0.7.3
Libav Libav 0.7.6
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
10
CVSSv2
CVE-2012-2772
Unspecified vulnerability in the ff_rv34_decode_frame function in libavcodec/rv34.c in FFmpeg prior to 0.11, and Libav 0.7.x prior to 0.7.7 and 0.8.x prior to 0.8.4, has unknown impact and attack vectors, related to "width/height changing with frame threading."
Libav Libav 0.8
Libav Libav 0.8.1
Libav Libav 0.8.2
Libav Libav 0.8.3
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
10
CVSSv2
CVE-2012-2775
Unspecified vulnerability in the read_var_block_data function in libavcodec/alsdec.c in FFmpeg prior to 0.11, and Libav 0.7.x prior to 0.7.7 and 0.8.x prior to 0.8.4, has unknown impact and attack vectors, related to a large order and an "out of array write in quant_cof.&quo...
Libav Libav 0.8
Libav Libav 0.8.1
Libav Libav 0.8.2
Libav Libav 0.8.3
Libav Libav 0.7
Libav Libav 0.7.4
Libav Libav 0.7.1
Libav Libav 0.7.2
Libav Libav 0.7.5
Libav Libav 0.7.3
Libav Libav 0.7.6
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »