Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

FFMPEG — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting FFMPEG. AI-powered Chinese analysis, POCs, and references for each vulnerability.

FFMPEG serves as a fundamental multimedia framework for processing audio, video, and other digital content across countless applications and systems. Historically, it has been susceptible to remote code execution vulnerabilities through crafted media files, often due to buffer overflows in parsing components. Other common issues include denial-of-service conditions and memory corruption flaws. While no single major incident stands out, its widespread deployment means vulnerabilities in FFMPEG can impact numerous products and services. The 11 recorded CVEs reflect ongoing security challenges in handling untrusted media data, requiring careful input validation and sandboxing when processing files from untrusted sources.

Top products by FFMPEG: FFMPEG MPEG-DASH
CVE IDTitleCVSSSeverityPublished
CVE-2026-40962 FFmpeg 安全漏洞 — FFmpegCWE-190 4.9 Medium2026-04-16
CVE-2025-59734 Heap-buffer-overflow write in FFmpeg SANM process_ftch — FFmpegCWE-416 7.8AIHighAI2025-10-06
CVE-2025-59733 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress — FFmpegCWE-787 7.1AIHighAI2025-10-06
CVE-2025-59732 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress — FFmpegCWE-787 7.1AIHighAI2025-10-06
CVE-2025-59731 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress — FFmpegCWE-787 7.8AIHighAI2025-10-06
CVE-2025-59730 Heap-buffer-overflow write in FFmpeg SANM decoding due to lack of bounds-checking in old_codec48 — FFmpegCWE-787 9.8AICriticalAI2025-10-06
CVE-2025-59729 Heap-buffer-overflow read in FFmpeg DHAV get_duration — FFmpegCWE-787 3.3AILowAI2025-10-06
CVE-2025-59728 Heap-buffer-overflow write in FFmpeg MDASH resolve_content_path — MPEG-DASHCWE-787 9.8AICriticalAI2025-10-06
CVE-2025-9951 Remote code execution via Heap Buffer Overflow in FFmpeg JPEG2000 — FFmpegCWE-122 8.8AIHighAI2025-09-09
CVE-2025-0518 Unchecked sscanf return value which leads to memory data leak — FFmpegCWE-252 6.5 -2025-01-16
CVE-2022-2566 Heap-memory write in FFMPEG — FFMPEGCWE-122 9.0 Critical2022-09-23

This page lists every published CVE security advisory associated with FFMPEG. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.