CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1143 matches found

CVE•added 2024/04/19 12:0 a.m.•68 views

CVE-2023-51791

CVE-2023-51791 is a local, heap-based buffer overflow in FFmpeg’s libavcodec/jpegxl_parser.c (gen_alias_map) that could enable arbitrary code execution on a vulnerable host. The described vulnerable build is FFmpeg with version string v.N113007-g8d24a28d06. Public sources classify the impact as h...

7.8CVSS7.2AI score0.00038EPSS

Exploits0References8Affected Software1

Debian CVE•added 2024/04/19 12:0 a.m.•14 views

CVE-2023-51791

Buffer Overflow vulenrability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavcodec/jpegxlparser.c in genaliasmap...

7.8CVSS7.8AI score0.00038EPSS

Exploits0

OSV•added 2024/04/17 7:15 p.m.•20 views

CVE-2024-31581

FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbsh266syntaxtemplate.c. This vulnerability allows attackers to cause undefined behavior within the application...

9.8CVSS7.4AI score

Exploits0References8

OSV•added 2024/04/17 7:15 p.m.•1 views

DEBIAN-CVE-2024-31581

9.8CVSS7.2AI score0.00217EPSS

Exploits0References1

UbuntuCve•added 2024/04/17 7:15 p.m.•21 views

CVE-2024-31581

9.8CVSS5.9AI score0.00217EPSS

Exploits0References4

CVE•added 2024/04/17 12:0 a.m.•70 views

CVE-2024-31581

CVE-2024-31581 affects FFmpeg v6.1, where the vulnerability stems from improper validation of an array index in libavcodec/cbs_h266_syntax_template.c. The issue can lead to undefined behavior in the application. The CVSS vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) assigns a base score of 9.8 (CR...

9.8CVSS9AI score0.00217EPSS

Exploits0References8Affected Software1

Tenable Nessus•added 2023/12/26 12:0 a.m.•33 views

GLSA-202312-14 : FFmpeg: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202312-14 FFmpeg: Multiple Vulnerabilities - dwauncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dccount is not strictly checked. CVE-2021-33815 - adtsdecodeextradata in libavformat/adtsenc...

9.8CVSS6AI score0.00334EPSS

Exploits3References12

BDU FSTEC•added 2023/12/26 12:0 a.m.•1 views

The vulnerability of the libavcodec/rpzaenc.c component in the FFmpeg multimedia library allows a perpetrator to gain access to confidential data and also trigger a service failure.

The vulnerability of the libavcodec/rpzaenc.c component in the FFmpeg multimedia library relates to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to gain access to confidential data, as well as cause service...

9.4CVSS0.00076EPSS

Exploits0References7Affected Software2

OSV•added 2023/11/16 3:15 a.m.•18 views

CVE-2023-47470

Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service DoS via the refpicliststruct function in libavcodec/evcps.c...

7.8CVSS7.6AI score

Exploits0References3

OSV•added 2023/11/16 3:15 a.m.•0 views

UBUNTU-CVE-2023-47470

7.8CVSS6AI score0.01116EPSS

Exploits0References5

UbuntuCve•added 2023/11/16 3:15 a.m.•11 views

CVE-2023-47470

7.8CVSS7.3AI score0.01116EPSS

Exploits0References4

BDU FSTEC•added 2023/11/14 12:0 a.m.•1 views

The vulnerability in the libavcodec/aacpsy.c component of the FFmpeg multimedia library allows a hacker to cause a service failure.

The vulnerability of the libavcodec/aacpsy.c component in the FFmpeg multimedia library is related to the lack of checks for division by zero. Exploiting this vulnerability allows a remote attacker to cause a service failure...

6.8CVSS0.01999EPSS

Exploits1References10Affected Software4

Tenable Nessus•added 2023/10/24 12:0 a.m.•63 views

Ubuntu 18.04 ESM / 20.04 ESM / 22.04 ESM : FFmpeg vulnerabilities (USN-6449-1)

The remote Ubuntu 18.04 ESM / 20.04 ESM / 22.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6449-1 advisory. It was discovered that FFmpeg incorrectly managed memory resulting in a memory leak. An attacker could possibly use this issue to...

8.8CVSS7AI score0.00656EPSS

Exploits8References9

Rosalinux•added 2023/10/22 6:34 a.m.•25 views

Advisory ROSA-SA-2023-2277

software: ffmpeg 4.4.3 OS: ROSA-CHROME packageevrstring: ffmpeg-4.4.3-2.src.rpm CVE-ID: CVE-2022-3109 BDU-ID: 2023-04787 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the vp3decodeframe function of the libavcodec/vp3.c component of the FFmpeg multimedia library is related to a lack of validation o...

8.1CVSS7.4AI score0.0032EPSS

Exploits1