Lucene search

K
cvelistMitreCVELIST:CVE-2023-39018
HistoryJul 28, 2023 - 12:00 a.m.

CVE-2023-39018

2023-07-2800:00:00
mitre
www.cve.org
ffmpeg
code injection
vulnerability
net.bramp.ffmpeg.ffmpeg
constructor
unchecked argument
disputed
use cases

0.001 Low

EPSS

Percentile

38.6%

FFmpeg 0.7.0 and below was discovered to contain a code injection vulnerability in the component net.bramp.ffmpeg.FFmpeg.<constructor>. This vulnerability is exploited via passing an unchecked argument. NOTE: this is disputed by multiple third parties because there are no realistic use cases in which FFmpeg.java uses untrusted input for the path of the executable file.

0.001 Low

EPSS

Percentile

38.6%

Related for CVELIST:CVE-2023-39018