CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/SC:N/VI:L/SI:N/VA:L/SA:N
AI Score
Confidence
Low
EPSS
Percentile
10.8%
A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as
critical. This affects the function pnm_decode_frame in the library
/libavcodec/pnmdec.c. The manipulation leads to heap-based buffer overflow.
It is possible to initiate the attack remotely. The exploit has been
disclosed to the public and may be used. Upgrading to version 7.0.2 is able
to address this issue. It is recommended to upgrade the affected component.
The associated identifier of this vulnerability is VDB-273651.
ffmpeg.org/
ffmpeg.org/download.html
github.com/CookedMelon/ReportCVE/tree/main/FFmpeg/poc3
launchpad.net/bugs/cve/CVE-2024-7055
nvd.nist.gov/vuln/detail/CVE-2024-7055
security-tracker.debian.org/tracker/CVE-2024-7055
vuldb.com/?ctiid.273651
vuldb.com/?id.273651
vuldb.com/?submit.376532
www.cve.org/CVERecord?id=CVE-2024-7055
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/SC:N/VI:L/SI:N/VA:L/SA:N
AI Score
Confidence
Low
EPSS
Percentile
10.8%