CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
31.6%
A vulnerability in libde265 involves copying an input buffer to an output buffer without checking that the size of the input buffer is less than the size of the output buffer, resulting in a buffer overflow in the
of the input buffer is smaller than the output buffer, resulting in a buffer overflow in the
ff_hevc_put_hevc_qpel_pixels_8_sse. Exploitation of the vulnerability could allow an attacker to overflow the
the buffer.
The vulnerability in libde265 is related to the heap buffer overflow in de265_image::set_SliceAddrRS(int,
int, int). Exploitation of the vulnerability could allow an attacker to perform an out-of-bounds write.