CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-36618

FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.8%

CVSS Severity

CVSS v3 Score 6.2

References

https://gist.github.com/1047524396/a148f3679415a6da53ca112eb2ba1523
https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavformat/avidec.c#L1699
https://github.com/ffmpeg/ffmpeg/commit/7a089ed8e049e3bfcb22de1250b86f2106060857
https://lists.debian.org/debian-lts-announce/2025/02/msg00000.html

Products affected by CVE-2024-36618

Ffmpeg » Ffmpeg » Version: 6.1.1

cpe:2.3:a:ffmpeg:ffmpeg:6.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-36618

Products

Pricing

Contact Us