CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-125017

A vulnerability classified as critical was found in FFmpeg 2.0. This vulnerability affects the function rpza_decode_stream. The manipulation leads to memory corruption. The attack can be initiated remotely. The name of the patch is Fixes Invalid Writes. It is recommended to apply a patch to fix this issue.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.8%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 6.8

References

http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=77bb0004bbe18f1498cfecdc68db5f10808b6599
https://vuldb.com/?id.12340
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=77bb0004bbe18f1498cfecdc68db5f10808b6599
https://vuldb.com/?id.12340

Products affected by CVE-2014-125017

Ffmpeg » Ffmpeg » Version: 2.0

cpe:2.3:a:ffmpeg:ffmpeg:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-125017

Products

Pricing

Contact Us