Vulnerabilities > CVE-2020-20892 - Divide By Zero vulnerability in Ffmpeg 4.2.1

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

ffmpeg

CWE-369

NVD

Published: 2021-09-20

Updated: 2023-11-07

Summary

An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero.

Vulnerable Configurations

Part	Description	Count
Application	Ffmpeg Ffmpeg Ffmpeg 4.2.1	1

Common Weakness Enumeration (CWE)

CWE-369 - Divide By Zero

References

https://trac.ffmpeg.org/ticket/8265
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=19587c9332f5be4f6bc6d7b2b8ef3fd21dfeaa01