CVE-2018-14394

libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero…

mitre·CWE-369·Published 2018-07-19

CVSS

—

EPSS

0.01

KEV

Exploits

cve.orgen

183 chars

libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted Waveform audio file.

NVDen

183 chars

libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted Waveform audio file.

NVDes

271 chars

libavformat/movenc.c en FFmpeg en versiones anteriores a la 4.0.2 permite que los atacantes provoquen una denegación de servicio (cierre inesperado de la aplicación provocado por un error de división entre cero) con un archivo de audio Waveform manipulado por el usuario.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P
3.0	Primary	NVD	6.5	2.8	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H