Vulnerabilities > Ffmpeg > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-18 | CVE-2014-125014 | Out-of-bounds Write vulnerability in Ffmpeg 2.0 A vulnerability classified as problematic was found in FFmpeg 2.0. | 5.5 |
| 2022-06-18 | CVE-2014-125016 | Out-of-bounds Write vulnerability in Ffmpeg 2.0 A vulnerability was found in FFmpeg 2.0. | 5.5 |
| 2022-05-02 | CVE-2022-1475 | Integer Overflow or Wraparound vulnerability in Ffmpeg An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729_parse() in llibavcodec/g729_parser.c when processing a specially crafted file. | 5.5 |
| 2021-11-10 | CVE-2020-23906 | Insufficient Verification of Data Authenticity vulnerability in Ffmpeg 4.2 FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity. | 5.5 |
| 2021-09-20 | CVE-2020-20902 | Out-of-bounds Read vulnerability in Ffmpeg 4.2.1 A CWE-125: Out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c in FFmpeg 4.2.1 during computation of the denominator of pseudo-normalized correlation R'(0), that could result in disclosure of information. | 6.5 |
| 2021-08-10 | CVE-2020-21697 | Use After Free vulnerability in multiple products A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file. | 6.5 |
| 2021-08-05 | CVE-2021-3566 | Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. | 5.5 |
| 2021-08-04 | CVE-2021-38114 | Unchecked Return Value vulnerability in multiple products libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868. | 5.5 |
| 2021-06-02 | CVE-2020-22054 | Memory Leak vulnerability in multiple products A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c. | 6.5 |
| 2021-06-02 | CVE-2020-22056 | Memory Leak vulnerability in Ffmpeg 4.2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the config_input function in af_acrossover.c. | 6.5 |