CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-36619

FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.6%

CVSS Severity

CVSS v3 Score 5.3

References

https://gist.github.com/1047524396/fad68e8251f4e34a1bb838de697d5119
https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/wavarc.c#L651
https://github.com/ffmpeg/ffmpeg/commit/28c7094b25b689185155a6833caf2747b94774a4

Products affected by CVE-2024-36619

Ffmpeg » Ffmpeg » Version: 6.1.1

cpe:2.3:a:ffmpeg:ffmpeg:6.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-36619

Products

Pricing

Contact Us