CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-28429

Integer overflow vulnerability in av_timecode_make_string in libavutil/timecode.c in FFmpeg version 4.3.2, allows local attackers to cause a denial of service (DoS) via crafted .mov file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.7%

CVSS Severity

CVSS v3 Score 5.5

References

https://git.ffmpeg.org/gitweb/ffmpeg.git/commitdiff/c94875471e3ba3dc396c6919ff3ec9b14539cd71
https://git.ffmpeg.org/gitweb/ffmpeg.git/commitdiff/c94875471e3ba3dc396c6919ff3ec9b14539cd71

Products affected by CVE-2021-28429

Ffmpeg » Ffmpeg » Version: 4.3.2

cpe:2.3:a:ffmpeg:ffmpeg:4.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28429

Products

Pricing

Contact Us