) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:ffmpeg:ffmpeg:5.11
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2024-22861 |
Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service (DoS) via the avcodec/osq module. Published: January 27, 2024; 2:15:07 AM -0500 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2024-22862 |
Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the JJPEG XL Parser. Published: January 27, 2024; 1:15:48 AM -0500 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2024-22860 |
Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the jpegxl_anim_read_packet component in the JPEG XL Animation decoder. Published: January 27, 2024; 1:15:48 AM -0500 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2023-47470 |
Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service (DoS) via the ref_pic_list_struct function in libavcodec/evc_ps.c Published: November 15, 2023; 10:15:07 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2023-46407 |
FFmpeg prior to commit bf814 was discovered to contain an out of bounds read via the dist->alphabet_size variable in the read_vlc_prefix() function. Published: October 27, 2023; 4:15:09 PM -0400 |
V3.1: 5.5 MEDIUM V2.0:(not available) |