Lucene search
HistoryNov 17, 2015 - 1:59 a.m.
CVE-2015-8218
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
High
EPSS
0.003
Percentile
69.3%
The decode_uncompressed function in libavcodec/faxcompr.c in FFmpeg before 2.8.2 does not validate uncompressed runs, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted CCITT FAX data.
Affected configurations
Node
ffmpegffmpegRange≤2.8.1
Related
cvelist
cvelist
CVE-2015-8218
2015-11-17 01:00:00
veracode
veracode
Denial Of Service (DoS)
2017-02-07 02:10:45
prion
prion
Out-of-bounds
2015-11-17 01:59:00
debiancve
debiancve
CVE-2015-8218
2015-11-17 01:59:02
ubuntucve
ubuntucve
CVE-2015-8218
2015-11-17 00:00:00
cve
cve
CVE-2015-8218
2015-11-17 01:59:02
nessus
nessus
openSUSE Security Update : ffmpeg (openSUSE-2015-821)
2015-11-30 00:00:00
freebsd
freebsd
ffmpeg -- multiple vulnerabilities
2015-11-27 00:00:00
osv
osv
ffmpeg-4-4.4-5.2 on GA media
2024-06-15 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
High
EPSS
0.003
Percentile
69.3%
Related for NVD:CVE-2015-8218