CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.8CVSS7.8AI score0.00296EPSS

ALPINE-CVE-2017-9994

libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not ensure that pixfmt is set, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecifie...

8.8CVSS7.8AI score0.01054EPSS

DEBIAN-CVE-2017-9992

Heap-based buffer overflow in the decodedds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact vi...

NVD•added 2017/06/28 6:29 a.m.•16 views

CVE-2017-9991

Heap-based buffer overflow in the xwddecodeframe function in libavcodec/xwddec.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other...

7.8CVSS8.2AI score0.00332EPSS

Exploits0References3

NVD•added 2017/06/28 6:29 a.m.•18 views

CVE-2017-9994

7.8CVSS8.2AI score0.00296EPSS

Exploits0References5

7.8CVSS7.4AI score0.00332EPSS

UBUNTU-CVE-2017-9991

Exploits0References4

7.8CVSS7.8AI score0.00332EPSS

ALPINE-CVE-2017-9991

OSV•added 2017/06/28 6:29 a.m.•21 views

CVE-2017-9994

7.8CVSS8AI score

Exploits0References5

Cvelist•added 2017/06/28 6:0 a.m.•12 views

CVE-2017-9990

Stack-based buffer overflow in the colorstringtorgba function in libavcodec/xpmdec.c in FFmpeg 3.3 before 3.3.1 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...

9.2AI score0.00968EPSS

Exploits0References3

CVE•added 2017/06/28 6:0 a.m.•41 views

CVE-2017-9995

FFmpeg 3.3 before 3.3.1 contains a heap-based buffer overflow in libavcodec/scpr.c due to improper validation of height and width in crafted files, enabling a remote attacker to cause denial of service (application crash). Affected component: FFmpeg’s libavcodec/scpr.c; root cause: inadequate bou...

7.8CVSS8.2AI score0.00378EPSS

Exploits0References5Affected Software1

CVE•added 2017/06/28 6:0 a.m.•112 views

CVE-2017-9992

CVE-2017-9992 is a vulnerability in FFmpeg/libav where the heap-based buffer overflow occurs in the decode_dds1 function (libavcodec/dfa.c). Affected branches include FFmpeg up to versions: 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1. Exploitation vi...

8.8CVSS9.4AI score0.01054EPSS

Exploits0References4Affected Software1

Debian CVE•added 2017/06/28 6:0 a.m.•34 views

CVE-2017-9992

8.8CVSS9.6AI score0.01054EPSS

Exploits0

AlpineLinux•added 2017/06/28 6:0 a.m.•27 views

CVE-2017-9991

7.8CVSS8.3AI score0.00332EPSS

Exploits0

Cvelist•added 2017/06/28 6:0 a.m.•13 views

CVE-2017-9995

libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate height and width data, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted file...

8.2AI score0.00378EPSS

Exploits0References5

Cvelist•added 2017/06/28 6:0 a.m.•21 views

CVE-2017-9992

9.5AI score0.01054EPSS

Exploits0References4

AlpineLinux•added 2017/06/28 6:0 a.m.•36 views

CVE-2017-9992

8.8CVSS9.6AI score0.01054EPSS

Exploits0

7.8CVSS7.2AI score0.00378EPSS

FFmpeg 'libavcodec/scpr.c' 'Heap Buffer Overflow Vulnerability'

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the libavcodec/scpr.c file in FFmpeg. A remote attacker could exploit this vulnerability to cause a denial of service heap buffer overflow and application...

CNVD•added 2017/06/28 12:0 a.m.•2 views

FFmpeg 'xwd_decode_frame' function heap buffer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A heap buffer overflow vulnerability exists in the 'xwddecodeframe' function in the libavcodec/xwddec.c file in FFmpeg. A remote attacker can exploit this vulnerability to cause a denial of...

7.8CVSS7.2AI score0.00332EPSS

8.8CVSS7.2AI score0.00968EPSS

FFmpeg 'color_string_to_rgba' function stack buffer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A stack buffer overflow vulnerability exists in the 'colorstringtorgba' function in the libavcodec/xpmdec.c file in FFmpeg. A remote attacker can exploit this vulnerability to cause a denia...

8.8CVSS7.2AI score0.01054EPSS

FFmpeg 'decode_dds1' function heap buffer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A heap buffer overflow vulnerability exists in the 'decodedds1' function in the libavcodec/dfa.c file in FFmpeg. A remote attacker could exploit this vulnerability to cause a denial of...

7.8CVSS7.2AI score0.00296EPSS

FFmpeg 'libavcodec/webp.c' heap buffer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the libavcodec/webp.c file in FFmpeg, which arises from the program failing to ensure that pixfmt is set. A remote attacker could use this vulnerability t...