Vulnerability Details CVE-2021-44956
Two Heap based buffer overflow vulnerabilities exist in ffjpeg through 01.01.2021. It is similar to CVE-2020-23852. Issues that are in the jfif_decode function at ffjpeg/src/jfif.c (line 552) could cause a Denial of Service by using a crafted jpeg file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.7%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
Products affected by CVE-2021-44956
-
cpe:2.3:a:rockcarry:ffjpeg:-
-
cpe:2.3:a:rockcarry:ffjpeg:2016-01-06
-
cpe:2.3:a:rockcarry:ffjpeg:2016-01-07
-
cpe:2.3:a:rockcarry:ffjpeg:2016-04-03
-
cpe:2.3:a:rockcarry:ffjpeg:2016-04-26
-
cpe:2.3:a:rockcarry:ffjpeg:2016-04-28
-
cpe:2.3:a:rockcarry:ffjpeg:2016-04-29
-
cpe:2.3:a:rockcarry:ffjpeg:2016-05-03
-
cpe:2.3:a:rockcarry:ffjpeg:2016-05-04
-
cpe:2.3:a:rockcarry:ffjpeg:2016-08-22
-
cpe:2.3:a:rockcarry:ffjpeg:2016-10-27
-
cpe:2.3:a:rockcarry:ffjpeg:2016-10-28
-
cpe:2.3:a:rockcarry:ffjpeg:2016-11-10
-
cpe:2.3:a:rockcarry:ffjpeg:2016-11-11
-
cpe:2.3:a:rockcarry:ffjpeg:2016-12-21
-
cpe:2.3:a:rockcarry:ffjpeg:2017-06-14
-
cpe:2.3:a:rockcarry:ffjpeg:2017-06-19
-
cpe:2.3:a:rockcarry:ffjpeg:2017-06-23
-
cpe:2.3:a:rockcarry:ffjpeg:2017-06-27
-
cpe:2.3:a:rockcarry:ffjpeg:2017-06-29
-
cpe:2.3:a:rockcarry:ffjpeg:2017-06-30
-
cpe:2.3:a:rockcarry:ffjpeg:2017-07-04
-
cpe:2.3:a:rockcarry:ffjpeg:2017-07-06
-
cpe:2.3:a:rockcarry:ffjpeg:2017-07-09
-
cpe:2.3:a:rockcarry:ffjpeg:2017-12-18
-
cpe:2.3:a:rockcarry:ffjpeg:2018-08-22
-
cpe:2.3:a:rockcarry:ffjpeg:2019-01-08
-
cpe:2.3:a:rockcarry:ffjpeg:2019-07-09
-
cpe:2.3:a:rockcarry:ffjpeg:2019-08-18
-
cpe:2.3:a:rockcarry:ffjpeg:2019-08-21
-
cpe:2.3:a:rockcarry:ffjpeg:2020-02-24
-
cpe:2.3:a:rockcarry:ffjpeg:2020-06-22
-
cpe:2.3:a:rockcarry:ffjpeg:2020-07-02
-
cpe:2.3:a:rockcarry:ffjpeg:2021-01-01