Lucene search

[email protected]CVE-2023-51797

HistoryApr 19, 2024 - 5:15 p.m.

CVE-2023-51797

2024-04-1917:15:52

CWE-94

[email protected]

web.nvd.nist.gov

buffer overflow

ffmpeg

arbitrary code

local attacker

nvd

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

7.2

Confidence

Low

EPSS

Percentile

10.3%

JSON

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avf_showwaves.c:722:24 in showwaves_filter_frame

References

ffmpeg.org/

github.com/FFmpeg/FFmpeg

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/

trac.ffmpeg.org/ticket/10756

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

7.2

Confidence

Low

EPSS

Percentile

10.3%

JSON

Related for CVE-2023-51797

ubuntucve1 debiancve1 nvd1 vulnrichment1 cvelist1 fedora3 openvas3 nessus3