Vulnerability Details CVE-2020-36138
An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.2%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/FFmpeg/FFmpeg/commit/292e41ce650a7b5ca5de4ae87fff0d6a90d9fc97
- https://lists.ffmpeg.org/pipermail/ffmpeg-devel/2020-November/272001.html
- https://trac.ffmpeg.org/ticket/8960
- https://github.com/FFmpeg/FFmpeg/commit/292e41ce650a7b5ca5de4ae87fff0d6a90d9fc97
- https://lists.ffmpeg.org/pipermail/ffmpeg-devel/2020-November/272001.html
- https://trac.ffmpeg.org/ticket/8960