Vulnerabilities > Ffmpeg

DATE CVE VULNERABILITY TITLE RISK
2017-08-31 CVE-2017-14059 Excessive Iteration vulnerability in Ffmpeg 3.3.3
In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and memory consumption.
network
ffmpeg CWE-834
7.1
7.1
2017-08-31 CVE-2017-14058 Infinite Loop vulnerability in Ffmpeg 3.3.3
In FFmpeg 2.4 and 3.3.3, the read_data function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service (infinite loop).
network
ffmpeg CWE-835
4.3
4.3
2017-08-31 CVE-2017-14057 Excessive Iteration vulnerability in Ffmpeg 3.3.3
In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption.
network
ffmpeg CWE-834
7.1
7.1
2017-08-31 CVE-2017-14056 Excessive Iteration vulnerability in Ffmpeg 3.3.3
In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption.
network
ffmpeg CWE-834
7.1
7.1
2017-08-31 CVE-2017-14055 Excessive Iteration vulnerability in Ffmpeg 3.3.3
In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption.
network
ffmpeg CWE-834
7.1
7.1
2017-08-31 CVE-2017-14054 Excessive Iteration vulnerability in Ffmpeg 3.3.3
In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of File) check might cause huge CPU consumption.
network
ffmpeg CWE-834
7.1
7.1
2017-08-28 CVE-2013-0870 Unspecified vulnerability in Ffmpeg 1.1.4
The 'vp3_decode_frame' function in FFmpeg 1.1.4 moves threads check out of header packet type check.
network
low complexity
ffmpeg
critical
 9.8
9.8
2017-08-28 CVE-2012-2805 Improper Resource Shutdown or Release vulnerability in Ffmpeg 0.10
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service.
network
low complexity
ffmpeg CWE-404
7.5
7.5
2017-08-09 CVE-2012-2781 Unspecified vulnerability in Ffmpeg
Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2780.
network
low complexity
ffmpeg
critical
 9.8
9.8
2017-08-09 CVE-2012-2780 Unspecified vulnerability in Ffmpeg
Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2781.
network
low complexity
ffmpeg
critical
 9.8
9.8