0.003 Low
EPSS
Percentile
65.6%
ffmpeg is vulnerable to remote code execution. The vulnerability exists due to a heap-use-after-free in the av_freep function in libavutil/mem.c which allows an attacker to inject and execute malicious codes.
av_freep
libavutil/mem.c
security-tracker.debian.org/tracker/CVE-2020-21688
trac.ffmpeg.org/ticket/8186
www.debian.org/security/2021/dsa-4998