How severe is CVE-2014-125017?

CVE-2014-125017 has a CVSS v3 score of 7.3 (HIGH).

CVE-2014-125017

Name: ffmpeg
Author: ffmpeg

7.3HIGH

A vulnerability classified as critical was found in FFmpeg 2.0. This vulnerability affects the function rpza_decode_stream. The manipulation leads to memory corruption. The attack can be initiated rem

发布于: 6/18/2022更新于: 11/21/2024

描述

A vulnerability classified as critical was found in FFmpeg 2.0. This vulnerability affects the function rpza_decode_stream. The manipulation leads to memory corruption. The attack can be initiated remotely. The name of the patch is Fixes Invalid Writes. It is recommended to apply a patch to fix this issue.

AI分析AI驱动

受影响产品

ffmpegffmpeg

2.0

参考资料

http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=77bb0004bbe18f1498cfecdc68db5f10808b6599
https://vuldb.com/?id.12340
Permissions RequiredThird Party AdvisoryVDB Entry
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=77bb0004bbe18f1498cfecdc68db5f10808b6599
https://vuldb.com/?id.12340
Permissions RequiredThird Party AdvisoryVDB Entry