Risk Scores
EPSS Score
0.35%
57.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| Ubuntu | Ubuntu Linux | |
| Open Source | Open Source ffmpeg <=7.1 |
Timeline
- Feb 22, 2025 CVE ID Reserved
- Feb 23, 2025 CVE Published
- Feb 24, 2025 EPSS Score
- Feb 24, 2025 CVE Updated
- Mar 4, 2025 Coalition ESS Score
- Mar 10, 2025 EPSS Score
- Mar 23, 2025 EPSS Score
- Apr 6, 2025 EPSS Score
- Apr 19, 2025 EPSS Score
- May 3, 2025 EPSS Score
- May 17, 2025 EPSS Score
- May 30, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0429.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0429 advisory
- https://github.com/advisories/GHSA-37pp-xmcw-vg4w advisory
- https://trac.ffmpeg.org/attachment/ticket/11418/poc exploit
- https://ubuntu.com/security/notices/USN-7738-1 advisory
- https://lists.debian.org/debian-security-announce/2025/msg00171.html advisory
- https://lists.debian.org/debian-lts-announce/2026/01/msg00011.html advisory