|Title:||FFmpeg <= 4.3 Buffer Overflow Vulnerability|
|Summary:||FFmpeg is prone to a heap-based buffer overflow vulnerability.|
FFmpeg is prone to a heap-based buffer overflow vulnerability.
The vulnerability exists in avio_get_str in libavformat/aviobuf.c
because dnn_backend_native.c calls ff_dnn_load_model_native and a certain index check is omitted.
Successful exploitation would allow an attacker to
crash the application or execute arbitrary code on the target machine.
FFmpeg through version 4.3.
No known solution is available as of 18th June, 2020.
Information regarding this issue will be updated once solution details are available.
Common Vulnerability Exposure (CVE) ID: CVE-2020-14212|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.