VDB
CVE-2023-49501
CVE-2023-49501
PUBLISHED
CVSS 8.699999809265137 HIGH
Das FFmpeg-Projekt besteht aus freien Programmen und Bibliotheken, die es ermöglichen, digitales Video- und Audiomaterial aufzunehmen, zu konvertieren, zu streamen und abzuspielen. Zudem enthält es mit libavcodec eine Audio- und Video-Codec-Sammlung, die verschiedene Codecs zur Verfügung stellt.
EPSS 0.03% · 10.1th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.03%
10.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu | Ubuntu Linux | |
| Debian | Debian Linux | |
| SUSE | SUSE openSUSE | |
| SUSE | SUSE Linux | |
| Open Source | Open Source ffmpeg | |
| Fedora | Fedora Linux |
Exploit Intelligence
- https://trac.ffmpeg.org/ticket/10686 (nist-nvd)
- https://trac.ffmpeg.org/ticket/10686#no1 (nist-nvd)
Timeline
- Apr 19, 2024 CVE Published
- Apr 20, 2024 EPSS Score
- May 15, 2024 EPSS Score
- Jun 10, 2024 EPSS Score
- Jul 4, 2024 EPSS Score
- Jul 29, 2024 EPSS Score
- Aug 23, 2024 EPSS Score
- Sep 17, 2024 EPSS Score
- Oct 11, 2024 EPSS Score
- Nov 5, 2024 EPSS Score
- Nov 30, 2024 EPSS Score
- Dec 26, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0939.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0939 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2276114 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2276120 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2276128 advisory
- https://trac.ffmpeg.org/ticket/10686 advisory
- https://trac.ffmpeg.org/ticket/10688 advisory
- https://trac.ffmpeg.org/ticket/10738 advisory
- https://trac.ffmpeg.org/ticket/10749#no1 advisory
- https://trac.ffmpeg.org/ticket/10753 advisory
- https://trac.ffmpeg.org/ticket/10756 advisory
- https://trac.ffmpeg.org/ticket/10758 advisory
- https://trac.ffmpeg.org/ticket/10700 advisory
- https://trac.ffmpeg.org/ticket/10701 advisory
- https://trac.ffmpeg.org/ticket/10699 advisory
- https://trac.ffmpeg.org/ticket/10702 advisory
- https://github.com/strukturag/libde265/issues/427 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-0c24da3136 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-April/018440.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-April/018441.html advisory
…and 25 more