exploitDog

CVE-2025-57616

Опубликовано: 02 сент. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) A use-after-free vulnerability in the write_interleaved method allows an attacker to cause a denial of service or memory corruption. The method violates Rust's aliasing rules by modifying a data structure through a mutable pointer while only holding an immutable reference, which can lead to undefined behavior when the data is accessed later.

Ссылки

https://github.com/meh/rust-ffmpeg/issues/192
Exploit
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:meh.schizofreni:rust-ffmpeg:0.3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00124

Низкий

7.5 High

CVSS3

Дефекты

CWE-416

Связанные уязвимости

GHSA-x347-9xfm-4xhh

CVSS3: 7.5

github

5 месяцев назад

An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) A use-after-free vulnerability in the write_interleaved method allows an attacker to cause a denial of service or memory corruption. The method violates Rust's aliasing rules by modifying a data structure through a mutable pointer while only holding an immutable reference, which can lead to undefined behavior when the data is accessed later.

EPSS

Процентиль: 32%

0.00124

Низкий

7.5 High

CVSS3

Дефекты

CWE-416