An issue in MPV v.0.29.1 fixed in v0.30 allows attackers to execute arbitrary code and crash program via the ao_c parameter.
CVSS Score
7.0
EPSS Score
0.0
Published
2023-02-17
A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file.
CVSS Score
7.8
EPSS Score
0.045
Published
2021-05-18