Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
Typedeb
Namespacedebian
Nameffmpeg
Version7:7.1.2-0+deb13u1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version7:7.1.2-1
Latest_non_vulnerable_version7:8.1-3
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-1vbq-3ve8-dbdr
vulnerability_id VCID-1vbq-3ve8-dbdr
summary FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-7700.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-7700.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-7700
reference_id
reference_type
scores
0
value 0.00088
scoring_system epss
scoring_elements 0.25027
published_at 2026-04-07T12:55:00Z
1
value 0.00088
scoring_system epss
scoring_elements 0.25095
published_at 2026-04-08T12:55:00Z
2
value 0.00088
scoring_system epss
scoring_elements 0.2514
published_at 2026-04-09T12:55:00Z
3
value 0.00088
scoring_system epss
scoring_elements 0.25155
published_at 2026-04-11T12:55:00Z
4
value 0.00088
scoring_system epss
scoring_elements 0.25113
published_at 2026-04-12T12:55:00Z
5
value 0.00088
scoring_system epss
scoring_elements 0.2506
published_at 2026-04-13T12:55:00Z
6
value 0.00088
scoring_system epss
scoring_elements 0.25071
published_at 2026-04-16T12:55:00Z
7
value 0.00091
scoring_system epss
scoring_elements 0.25825
published_at 2026-04-02T12:55:00Z
8
value 0.00091
scoring_system epss
scoring_elements 0.25868
published_at 2026-04-04T12:55:00Z
9
value 0.00104
scoring_system epss
scoring_elements 0.2839
published_at 2026-04-18T12:55:00Z
10
value 0.00104
scoring_system epss
scoring_elements 0.28337
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-7700
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-7700
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-7700
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2380420
reference_id 2380420
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-07T19:07:55Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2380420
5
reference_url https://access.redhat.com/security/cve/CVE-2025-7700
reference_id CVE-2025-7700
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-07T19:07:55Z/
url https://access.redhat.com/security/cve/CVE-2025-7700
6
reference_url https://usn.ubuntu.com/7830-1/
reference_id USN-7830-1
reference_type
scores
url https://usn.ubuntu.com/7830-1/
7
reference_url https://usn.ubuntu.com/7871-1/
reference_id USN-7871-1
reference_type
scores
url https://usn.ubuntu.com/7871-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.9-0%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.7-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
7
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-7700
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1vbq-3ve8-dbdr
1
url VCID-2k2f-v66d-t3h3
vulnerability_id VCID-2k2f-v66d-t3h3
summary FFmpeg: Double-Free Vulnerability in FFmpeg TensorFlow DNN Backend
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12343.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12343.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-12343
reference_id
reference_type
scores
0
value 4e-05
scoring_system epss
scoring_elements 0.00154
published_at 2026-04-21T12:55:00Z
1
value 4e-05
scoring_system epss
scoring_elements 0.00152
published_at 2026-04-18T12:55:00Z
2
value 4e-05
scoring_system epss
scoring_elements 0.00151
published_at 2026-04-09T12:55:00Z
3
value 4e-05
scoring_system epss
scoring_elements 0.00153
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-12343
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2406533
reference_id 2406533
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T18:15:43Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2406533
4
reference_url https://access.redhat.com/security/cve/CVE-2025-12343
reference_id CVE-2025-12343
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-25T18:15:43Z/
url https://access.redhat.com/security/cve/CVE-2025-12343
fixed_packages
0
url pkg:deb/debian/ffmpeg@0?distro=trixie
purl pkg:deb/debian/ffmpeg@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@0%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-12343
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2k2f-v66d-t3h3
2
url VCID-cpnk-whs1-6kg7
vulnerability_id VCID-cpnk-whs1-6kg7
summary A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c of the component AAC Encoder. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1594
reference_id
reference_type
scores
0
value 0.00118
scoring_system epss
scoring_elements 0.30734
published_at 2026-04-09T12:55:00Z
1
value 0.00118
scoring_system epss
scoring_elements 0.30826
published_at 2026-04-04T12:55:00Z
2
value 0.00118
scoring_system epss
scoring_elements 0.30644
published_at 2026-04-07T12:55:00Z
3
value 0.00118
scoring_system epss
scoring_elements 0.30702
published_at 2026-04-08T12:55:00Z
4
value 0.00118
scoring_system epss
scoring_elements 0.30692
published_at 2026-04-12T12:55:00Z
5
value 0.00118
scoring_system epss
scoring_elements 0.30738
published_at 2026-04-11T12:55:00Z
6
value 0.00118
scoring_system epss
scoring_elements 0.30656
published_at 2026-04-18T12:55:00Z
7
value 0.00118
scoring_system epss
scoring_elements 0.30673
published_at 2026-04-16T12:55:00Z
8
value 0.00118
scoring_system epss
scoring_elements 0.30648
published_at 2026-04-13T12:55:00Z
9
value 0.00121
scoring_system epss
scoring_elements 0.31104
published_at 2026-04-21T12:55:00Z
10
value 0.00329
scoring_system epss
scoring_elements 0.55896
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1594
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1594
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1594
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://trac.ffmpeg.org/ticket/11418#comment:3
reference_id 11418#comment:3
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
2
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
3
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-24T12:02:17Z/
url https://trac.ffmpeg.org/ticket/11418#comment:3
4
reference_url https://vuldb.com/?ctiid.296589
reference_id ?ctiid.296589
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
2
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
3
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-24T12:02:17Z/
url https://vuldb.com/?ctiid.296589
5
reference_url https://ffmpeg.org/
reference_id ffmpeg.org
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
2
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
3
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-24T12:02:17Z/
url https://ffmpeg.org/
6
reference_url https://vuldb.com/?id.296589
reference_id ?id.296589
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
2
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
3
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-24T12:02:17Z/
url https://vuldb.com/?id.296589
7
reference_url https://trac.ffmpeg.org/attachment/ticket/11418/poc
reference_id poc
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
2
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
3
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-24T12:02:17Z/
url https://trac.ffmpeg.org/attachment/ticket/11418/poc
8
reference_url https://vuldb.com/?submit.496929
reference_id ?submit.496929
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
2
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
3
value 5.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-24T12:02:17Z/
url https://vuldb.com/?submit.496929
9
reference_url https://usn.ubuntu.com/7738-1/
reference_id USN-7738-1
reference_type
scores
url https://usn.ubuntu.com/7738-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.9-0%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-1594
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cpnk-whs1-6kg7
3
url VCID-dxkt-5xbr-zbcw
vulnerability_id VCID-dxkt-5xbr-zbcw
summary FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59732.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59732.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59732
reference_id
reference_type
scores
0
value 0.00019
scoring_system epss
scoring_elements 0.04926
published_at 2026-04-02T12:55:00Z
1
value 0.00019
scoring_system epss
scoring_elements 0.05066
published_at 2026-04-21T12:55:00Z
2
value 0.00019
scoring_system epss
scoring_elements 0.04962
published_at 2026-04-13T12:55:00Z
3
value 0.00019
scoring_system epss
scoring_elements 0.04909
published_at 2026-04-16T12:55:00Z
4
value 0.00019
scoring_system epss
scoring_elements 0.04919
published_at 2026-04-18T12:55:00Z
5
value 0.00019
scoring_system epss
scoring_elements 0.04952
published_at 2026-04-04T12:55:00Z
6
value 0.00019
scoring_system epss
scoring_elements 0.0497
published_at 2026-04-07T12:55:00Z
7
value 0.00019
scoring_system epss
scoring_elements 0.05003
published_at 2026-04-08T12:55:00Z
8
value 0.00019
scoring_system epss
scoring_elements 0.05019
published_at 2026-04-09T12:55:00Z
9
value 0.00019
scoring_system epss
scoring_elements 0.05
published_at 2026-04-11T12:55:00Z
10
value 0.00019
scoring_system epss
scoring_elements 0.04982
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59732
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2401797
reference_id 2401797
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2401797
4
reference_url https://issuetracker.google.com/436510316
reference_id 436510316
reference_type
scores
0
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-08T03:55:13Z/
url https://issuetracker.google.com/436510316
5
reference_url https://usn.ubuntu.com/7982-1/
reference_id USN-7982-1
reference_type
scores
url https://usn.ubuntu.com/7982-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@0?distro=trixie
purl pkg:deb/debian/ffmpeg@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@0%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.7-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
7
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-59732
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dxkt-5xbr-zbcw
4
url VCID-e7ak-ahr6-wfa5
vulnerability_id VCID-e7ak-ahr6-wfa5
summary 
When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data.

We read rle_raw_size from the input file at [0], we decompress and decode into the buffer td->rle_raw_data of size rle_raw_size at [1], and then at [2] we will access entries in this buffer up to (td->xsize - 1) * (td->ysize - 1) + rle_raw_size / 2, which may exceed rle_raw_size.




We recommend upgrading to version 8.0 or beyond.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59731
reference_id
reference_type
scores
0
value 0.00019
scoring_system epss
scoring_elements 0.04993
published_at 2026-04-21T12:55:00Z
1
value 0.00019
scoring_system epss
scoring_elements 0.04849
published_at 2026-04-02T12:55:00Z
2
value 0.00019
scoring_system epss
scoring_elements 0.0489
published_at 2026-04-13T12:55:00Z
3
value 0.00019
scoring_system epss
scoring_elements 0.0484
published_at 2026-04-16T12:55:00Z
4
value 0.00019
scoring_system epss
scoring_elements 0.04847
published_at 2026-04-18T12:55:00Z
5
value 0.00019
scoring_system epss
scoring_elements 0.04875
published_at 2026-04-04T12:55:00Z
6
value 0.00019
scoring_system epss
scoring_elements 0.04893
published_at 2026-04-07T12:55:00Z
7
value 0.00019
scoring_system epss
scoring_elements 0.0493
published_at 2026-04-08T12:55:00Z
8
value 0.00019
scoring_system epss
scoring_elements 0.04946
published_at 2026-04-09T12:55:00Z
9
value 0.00019
scoring_system epss
scoring_elements 0.04929
published_at 2026-04-11T12:55:00Z
10
value 0.00019
scoring_system epss
scoring_elements 0.04909
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59731
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://issuetracker.google.com/436510153
reference_id 436510153
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-08T03:55:11Z/
url https://issuetracker.google.com/436510153
3
reference_url https://usn.ubuntu.com/7982-1/
reference_id USN-7982-1
reference_type
scores
url https://usn.ubuntu.com/7982-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@0?distro=trixie
purl pkg:deb/debian/ffmpeg@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@0%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.7-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
7
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-59731
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e7ak-ahr6-wfa5
5
url VCID-n9qa-r9nt-fyc8
vulnerability_id VCID-n9qa-r9nt-fyc8
summary A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-9951
reference_id
reference_type
scores
0
value 0.0034
scoring_system epss
scoring_elements 0.56753
published_at 2026-04-04T12:55:00Z
1
value 0.0034
scoring_system epss
scoring_elements 0.56732
published_at 2026-04-02T12:55:00Z
2
value 0.00409
scoring_system epss
scoring_elements 0.61326
published_at 2026-04-12T12:55:00Z
3
value 0.00409
scoring_system epss
scoring_elements 0.61258
published_at 2026-04-07T12:55:00Z
4
value 0.00409
scoring_system epss
scoring_elements 0.61306
published_at 2026-04-08T12:55:00Z
5
value 0.00409
scoring_system epss
scoring_elements 0.6134
published_at 2026-04-11T12:55:00Z
6
value 0.00409
scoring_system epss
scoring_elements 0.6132
published_at 2026-04-09T12:55:00Z
7
value 0.00409
scoring_system epss
scoring_elements 0.61308
published_at 2026-04-13T12:55:00Z
8
value 0.00559
scoring_system epss
scoring_elements 0.68261
published_at 2026-04-21T12:55:00Z
9
value 0.00559
scoring_system epss
scoring_elements 0.68271
published_at 2026-04-16T12:55:00Z
10
value 0.00559
scoring_system epss
scoring_elements 0.68281
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-9951
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9951
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9951
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/google/security-research/security/advisories/GHSA-39q3-f8jq-v6mg
reference_id GHSA-39q3-f8jq-v6mg
reference_type
scores
0
value 7.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-09T14:20:36Z/
url https://github.com/google/security-research/security/advisories/GHSA-39q3-f8jq-v6mg
4
reference_url https://usn.ubuntu.com/7830-1/
reference_id USN-7830-1
reference_type
scores
url https://usn.ubuntu.com/7830-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.9-0%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.7-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
7
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-9951
risk_score 3.2
exploitability 0.5
weighted_severity 6.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n9qa-r9nt-fyc8
6
url VCID-wrb6-w8ps-uuge
vulnerability_id VCID-wrb6-w8ps-uuge
summary ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10256.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10256.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-10256
reference_id
reference_type
scores
0
value 8e-05
scoring_system epss
scoring_elements 0.00748
published_at 2026-04-21T12:55:00Z
1
value 8e-05
scoring_system epss
scoring_elements 0.00722
published_at 2026-04-02T12:55:00Z
2
value 8e-05
scoring_system epss
scoring_elements 0.00723
published_at 2026-04-08T12:55:00Z
3
value 8e-05
scoring_system epss
scoring_elements 0.00713
published_at 2026-04-09T12:55:00Z
4
value 8e-05
scoring_system epss
scoring_elements 0.0071
published_at 2026-04-11T12:55:00Z
5
value 8e-05
scoring_system epss
scoring_elements 0.00704
published_at 2026-04-12T12:55:00Z
6
value 8e-05
scoring_system epss
scoring_elements 0.00705
published_at 2026-04-13T12:55:00Z
7
value 8e-05
scoring_system epss
scoring_elements 0.00702
published_at 2026-04-16T12:55:00Z
8
value 8e-05
scoring_system epss
scoring_elements 0.00708
published_at 2026-04-18T12:55:00Z
9
value 8e-05
scoring_system epss
scoring_elements 0.00719
published_at 2026-04-04T12:55:00Z
10
value 8e-05
scoring_system epss
scoring_elements 0.00724
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-10256
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10256
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10256
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2394495
reference_id 2394495
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2394495
5
reference_url https://github.com/FFmpeg/FFmpeg/commit/a25462482c02c004d685a8fcf2fa63955aaa0931
reference_id a25462482c02c004d685a8fcf2fa63955aaa0931
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://github.com/FFmpeg/FFmpeg/commit/a25462482c02c004d685a8fcf2fa63955aaa0931
6
reference_url https://access.redhat.com/security/cve/CVE-2025-10256
reference_id CVE-2025-10256
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://access.redhat.com/security/cve/CVE-2025-10256
7
reference_url https://github.com/FFmpeg/FFmpeg/commit/d3be186ed1bcdcf2c093d6b13a0e66dc5132be2a
reference_id d3be186ed1bcdcf2c093d6b13a0e66dc5132be2a
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://github.com/FFmpeg/FFmpeg/commit/d3be186ed1bcdcf2c093d6b13a0e66dc5132be2a
8
reference_url https://usn.ubuntu.com/7830-1/
reference_id USN-7830-1
reference_type
scores
url https://usn.ubuntu.com/7830-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.9-0%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.9-0%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-10256
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wrb6-w8ps-uuge
7
url VCID-zd2k-2pb2-y7gz
vulnerability_id VCID-zd2k-2pb2-y7gz
summary FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59733.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59733.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59733
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.05757
published_at 2026-04-02T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.05936
published_at 2026-04-21T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.05816
published_at 2026-04-13T12:55:00Z
3
value 0.00022
scoring_system epss
scoring_elements 0.05782
published_at 2026-04-16T12:55:00Z
4
value 0.00022
scoring_system epss
scoring_elements 0.05789
published_at 2026-04-18T12:55:00Z
5
value 0.00022
scoring_system epss
scoring_elements 0.05796
published_at 2026-04-04T12:55:00Z
6
value 0.00022
scoring_system epss
scoring_elements 0.0579
published_at 2026-04-07T12:55:00Z
7
value 0.00022
scoring_system epss
scoring_elements 0.05829
published_at 2026-04-08T12:55:00Z
8
value 0.00022
scoring_system epss
scoring_elements 0.05853
published_at 2026-04-09T12:55:00Z
9
value 0.00022
scoring_system epss
scoring_elements 0.05832
published_at 2026-04-11T12:55:00Z
10
value 0.00022
scoring_system epss
scoring_elements 0.05823
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59733
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2401799
reference_id 2401799
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2401799
4
reference_url https://issuetracker.google.com/436511754
reference_id 436511754
reference_type
scores
0
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-08T03:55:14Z/
url https://issuetracker.google.com/436511754
5
reference_url https://usn.ubuntu.com/7982-1/
reference_id USN-7982-1
reference_type
scores
url https://usn.ubuntu.com/7982-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@0?distro=trixie
purl pkg:deb/debian/ffmpeg@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@0%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.7-0%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.7-0%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-0%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-1%3Fdistro=trixie
6
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
7
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
aliases CVE-2025-59733
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zd2k-2pb2-y7gz
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.2-0%252Bdeb13u1%3Fdistro=trixie