Vulnerabilities > Ffmpeg > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-26 | CVE-2020-22015 | Classic Buffer Overflow vulnerability in multiple products Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code. | 8.8 |
| 2021-05-26 | CVE-2020-24020 | Classic Buffer Overflow vulnerability in Ffmpeg 4.2.3 Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnn_execute_layer_pad in libavfilter/dnn/dnn_backend_native_layer_pad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code. | 8.8 |
| 2021-05-25 | CVE-2020-20450 | NULL Pointer Dereference vulnerability in multiple products FFmpeg 4.2 is affected by null pointer dereference passed as argument to libavformat/aviobuf.c, which could cause a Denial of Service. | 7.5 |
| 2021-05-25 | CVE-2020-20451 | Memory Leak vulnerability in multiple products Denial of Service issue in FFmpeg 4.2 due to resource management errors via fftools/cmdutils.c. | 7.5 |
| 2021-05-24 | CVE-2020-21041 | Classic Buffer Overflow vulnerability in multiple products Buffer Overflow vulnerability exists in FFmpeg 4.1 via apng_do_inverse_blend in libavcodec/pngenc.c, which could let a remote malicious user cause a Denial of Service | 7.5 |
| 2021-04-07 | CVE-2021-30123 | Classic Buffer Overflow vulnerability in Ffmpeg 4.4 FFmpeg <=4.3 contains a buffer overflow vulnerability in libavcodec through a crafted file that may lead to remote code execution. | 8.8 |
| 2021-03-30 | CVE-2020-24995 | Classic Buffer Overflow vulnerability in Ffmpeg 3.1.2 Buffer overflow vulnerability in sniff_channel_order function in aacdec_template.c in ffmpeg 3.1.2, allows attackers to execute arbitrary code (local). | 7.8 |
| 2021-01-04 | CVE-2020-35965 | Out-of-bounds Write vulnerability in multiple products decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations. | 7.5 |
| 2020-06-16 | CVE-2020-14212 | Out-of-bounds Write vulnerability in Ffmpeg 4.3 FFmpeg through 4.3 has a heap-based buffer overflow in avio_get_str in libavformat/aviobuf.c because dnn_backend_native.c calls ff_dnn_load_model_native and a certain index check is omitted. | 8.8 |
| 2020-01-14 | CVE-2014-4610 | Integer Overflow or Wraparound vulnerability in Ffmpeg Integer overflow in the get_len function in libavutil/lzo.c in FFmpeg before 0.10.14, 1.1.x before 1.1.12, 1.2.x before 1.2.7, 2.0.x before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.4 allows remote attackers to execute arbitrary code via a crafted Literal Run. | 8.8 |