AXIS OS 安全漏洞

AXIS OS is an operating system for edge devices developed by Axis, a Swedish company. There is a security vulnerability in AXIS OS, which stems from improper validation of configuration file inputs in the local file system. This vulnerability may allow code execution and potentially escalate...

Astra Linux - уязвимость в ffmpeg

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c...

Astra Linux - уязвимость в ffmpeg, ffmpeg5

A NULL pointer dereference vulnerability exists in FFmpeg’s Firequalizer filter libavfilter/affirequalizer.c due to a missing check on the return value of avmallocarray in the configinput function. An attacker could exploit this by tricking a victim into processing a crafted media file with the...

PT-2026-25049

🔴 CVE-2026-26793 - Critical GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the set config function. This vulnerability allows attackers to execute arbitrary commands via ... https://t.co/4ioEauePbG https://t.co/UVrVh3JYcc...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the configinput function. An attacker can cause the application to crash by tricking a victim into processing a specially crafted media file with the Firequalizer filter enabled. Remediation Upgrade ffmpeg t...

CVE-2025-33246

CVE-2025-33246 affects the NVIDIA NeMo Framework across platforms, with the vulnerability residing in the ASR Evaluator utility. A crafted input in a configuration parameter can trigger a command injection, enabling possible code execution, privilege escalation, data tampering, or information dis...

PT-2026-20405

Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework affected versions not specified Description The NVIDIA NeMo Framework contains a flaw within the ASR Evaluator utility. A user can inject commands by providing specially crafted input to a configuration parameter...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ffmpeg (UTSA-2025-936087)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-936087 advisory. A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c. Tenable has extracted the preceding...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ffmpeg (UTSA-2025-936082)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-936082 advisory. Buffer Overflow vulnerability in function configinput in libavfilter/vfgblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified...

PT-2025-38735

Name of the Vulnerable Software and Affected Versions FFmpeg affected versions not specified Description A flaw exists in the config input function within the FFmpeg multimedia library due to pointer dereferencing. Successful exploitation by a remote attacker may lead to a denial-of-service...

SUSE CVE-2020-20891

Buffer Overflow vulnerability in function configinput in libavfilter/vfgblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...

SUSE CVE-2020-22026

Buffer Overflow vulnerability exists in FFmpeg 4.2 in the configinput function at libavfilter/aftremolo.c, which could let a remote malicious user cause a Denial of Service...

CVE-2022-41958 Deserialization Vulnerability by yaml config input in super-xray

super-xray is a web vulnerability scanning tool. Versions prior to 0.7 assumed trusted input for the program config which is stored in a yaml file. An attacker with local access to the file could exploit this and compromise the program. This issue has been addressed in commit 4d0d5966 and will be...

UBUNTU-CVE-2020-20891

Buffer Overflow vulnerability in function configinput in libavfilter/vfgblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...

CVE-2020-22056

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c...

UBUNTU-CVE-2020-22056

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c...

DEBIAN-CVE-2020-22026

Buffer Overflow vulnerability exists in FFmpeg 4.2 in the configinput function at libavfilter/aftremolo.c, which could let a remote malicious user cause a Denial of Service...

FFmpeg 安全漏洞

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the configinput function in libavfilter/aftremolo.c in FFmpeg version 4.2. An attacker could exploit thi...

PT-2021-6711 · FFmpeg +3 · Ffmpeg +3

Name of the Vulnerable Software and Affected Versions: Ffmpeg version 4.2.1 Description: The issue is related to a Buffer Overflow in the config input function within the libavfilter/vf gblur.c component of the Ffmpeg library. This allows attackers to potentially cause a Denial of Service or...