Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:26259
HistoryAug 06, 2020 - 9:39 p.m.

Denial Of Service (DoS)

2020-08-0621:39:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
ffmpeg
vulnerability
denial of service

EPSS

0.043

Percentile

92.3%

ffmpeg is vulnerable to Denial Of Service (DoS). The aa_read_header in libavformat/aadec.c in FFmpeg before 3.2.14 and 4.x before 4.1.4 does not check for sscanf failure and consequently allows use of uninitialized variables.