CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-20902

A CWE-125: Out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c in FFmpeg 4.2.1 during computation of the denominator of pseudo-normalized correlation R'(0), that could result in disclosure of information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=0c61661a2cbe1b8b284c80ada1c2fdddf4992cad
https://trac.ffmpeg.org/ticket/8176
http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=0c61661a2cbe1b8b284c80ada1c2fdddf4992cad
https://trac.ffmpeg.org/ticket/8176

Products affected by CVE-2020-20902

Ffmpeg » Ffmpeg » Version: 4.2.1

cpe:2.3:a:ffmpeg:ffmpeg:4.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20902

Products

Pricing

Contact Us