CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-24020

Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnn_execute_layer_pad in libavfilter/dnn/dnn_backend_native_layer_pad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=584f396132aa19d21bb1e38ad9a5d428869290cb
https://trac.ffmpeg.org/ticket/8718
http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=584f396132aa19d21bb1e38ad9a5d428869290cb
https://trac.ffmpeg.org/ticket/8718

Products affected by CVE-2020-24020

Ffmpeg » Ffmpeg » Version: 4.2.3

cpe:2.3:a:ffmpeg:ffmpeg:4.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-24020

Products

Pricing

Contact Us