Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-wj7r-cv36-mxr3

Опубликовано: 06 янв. 2025
Источник: github
Github: Не прошло ревью
CVSS3: 4.7

Описание

A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.

A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.

Ссылки

EPSS

Процентиль: 37%
0.00158
Низкий

4.7 Medium

CVSS3

CVE ID

CVE-2023-6601

Дефекты

CWE-94
CWE-99

Связанные уязвимости

ubuntu логотип

CVE-2023-6601

CVSS3: 4.7
ubuntu
около 1 года назад

A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.

nvd логотип

CVE-2023-6601

CVSS3: 4.7
nvd
около 1 года назад

A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.

debian логотип

CVE-2023-6601

CVSS3: 4.7
debian
около 1 года назад

A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

suse-cvrf логотип

SUSE-SU-2026:0229-1

suse-cvrf
16 дней назад

Security update for ffmpeg-4

suse-cvrf логотип

SUSE-SU-2026:0198-1

suse-cvrf
17 дней назад

Security update for ffmpeg-4

EPSS

Процентиль: 37%
0.00158
Низкий

4.7 Medium

CVSS3

CVE ID

CVE-2023-6601

Дефекты

CWE-94
CWE-99