CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-24756

libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ff_hevc_put_unweighted_pred_8_sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.4%

CVSS Severity

CVSS v3 Score 5.5

References

https://github.com/strukturag/libde265/issues/380
https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html
https://github.com/strukturag/libde265/issues/380
https://lists.debian.org/debian-lts-announce/2023/03/msg00004.html

Products affected by CVE-2023-24756

Struktur » Libde265 » Version: 1.0.10

cpe:2.3:a:struktur:libde265:1.0.10
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-24756

Products

Pricing

Contact Us