Vulnerability Details CVE-2021-30123
FFmpeg <=4.3 contains a buffer overflow vulnerability in libavcodec through a crafted file that may lead to remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.036
EPSS Ranking 87.3%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=d6f293353c94c7ce200f6e0975ae3de49787f91f
- https://security.gentoo.org/glsa/202105-24
- https://trac.ffmpeg.org/ticket/8845
- https://trac.ffmpeg.org/ticket/8863
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=d6f293353c94c7ce200f6e0975ae3de49787f91f
- https://security.gentoo.org/glsa/202105-24
- https://trac.ffmpeg.org/ticket/8845
- https://trac.ffmpeg.org/ticket/8863