Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
Typedeb
Namespacedebian
Nameffmpeg
Version7:7.1.3-0+deb13u1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version7:7.1.3-1
Latest_non_vulnerable_version7:7.1.3-1
Affected_by_vulnerabilities
0
url VCID-2qje-t52h-fyfk
vulnerability_id VCID-2qje-t52h-fyfk
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40962.json
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-40962.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-40962
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01186
published_at 2026-04-26T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.01179
published_at 2026-04-29T12:55:00Z
2
value 3e-05
scoring_system epss
scoring_elements 0.00099
published_at 2026-04-16T12:55:00Z
3
value 3e-05
scoring_system epss
scoring_elements 0.001
published_at 2026-04-18T12:55:00Z
4
value 8e-05
scoring_system epss
scoring_elements 0.00728
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-40962
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40962
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/22348
reference_id 22348
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-16T12:20:13Z/
url https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/22348
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2458862
reference_id 2458862
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2458862
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:7.1.3-1
purl pkg:deb/debian/ffmpeg@7:7.1.3-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-1
aliases CVE-2026-40962
risk_score 2.1
exploitability 0.5
weighted_severity 4.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2qje-t52h-fyfk
1
url VCID-352p-mxyy-k3bu
vulnerability_id VCID-352p-mxyy-k3bu
summary FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-22921
reference_id
reference_type
scores
0
value 0.0012
scoring_system epss
scoring_elements 0.30527
published_at 2026-04-29T12:55:00Z
1
value 0.0012
scoring_system epss
scoring_elements 0.30942
published_at 2026-04-16T12:55:00Z
2
value 0.0012
scoring_system epss
scoring_elements 0.30922
published_at 2026-04-18T12:55:00Z
3
value 0.0012
scoring_system epss
scoring_elements 0.30888
published_at 2026-04-21T12:55:00Z
4
value 0.0012
scoring_system epss
scoring_elements 0.30727
published_at 2026-04-24T12:55:00Z
5
value 0.0012
scoring_system epss
scoring_elements 0.3061
published_at 2026-04-26T12:55:00Z
6
value 0.0012
scoring_system epss
scoring_elements 0.30909
published_at 2026-04-07T12:55:00Z
7
value 0.0012
scoring_system epss
scoring_elements 0.30967
published_at 2026-04-08T12:55:00Z
8
value 0.0012
scoring_system epss
scoring_elements 0.30995
published_at 2026-04-09T12:55:00Z
9
value 0.0012
scoring_system epss
scoring_elements 0.31
published_at 2026-04-11T12:55:00Z
10
value 0.0012
scoring_system epss
scoring_elements 0.30957
published_at 2026-04-12T12:55:00Z
11
value 0.0012
scoring_system epss
scoring_elements 0.30912
published_at 2026-04-13T12:55:00Z
12
value 0.00126
scoring_system epss
scoring_elements 0.31959
published_at 2026-04-02T12:55:00Z
13
value 0.00126
scoring_system epss
scoring_elements 0.32001
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-22921
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-22921
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-22921
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://trac.ffmpeg.org/ticket/11393
reference_id 11393
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-19T14:39:48Z/
url https://trac.ffmpeg.org/ticket/11393
4
reference_url https://usn.ubuntu.com/7538-1/
reference_id USN-7538-1
reference_type
scores
url https://usn.ubuntu.com/7538-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:7.1.3-1
purl pkg:deb/debian/ffmpeg@7:7.1.3-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-1
aliases CVE-2025-22921
risk_score 1.6
exploitability 0.5
weighted_severity 3.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-352p-mxyy-k3bu
Fixing_vulnerabilities
0
url VCID-e9kf-tzg8-9bht
vulnerability_id VCID-e9kf-tzg8-9bht
summary FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side data would be attached in the decoder thread while being read in the output thread.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-36615
reference_id
reference_type
scores
0
value 0.00069
scoring_system epss
scoring_elements 0.21293
published_at 2026-04-08T12:55:00Z
1
value 0.00069
scoring_system epss
scoring_elements 0.21273
published_at 2026-04-18T12:55:00Z
2
value 0.00069
scoring_system epss
scoring_elements 0.21264
published_at 2026-04-16T12:55:00Z
3
value 0.00069
scoring_system epss
scoring_elements 0.2127
published_at 2026-04-13T12:55:00Z
4
value 0.00069
scoring_system epss
scoring_elements 0.21323
published_at 2026-04-12T12:55:00Z
5
value 0.00069
scoring_system epss
scoring_elements 0.21364
published_at 2026-04-11T12:55:00Z
6
value 0.00069
scoring_system epss
scoring_elements 0.21355
published_at 2026-04-09T12:55:00Z
7
value 0.00069
scoring_system epss
scoring_elements 0.21408
published_at 2026-04-02T12:55:00Z
8
value 0.00069
scoring_system epss
scoring_elements 0.21462
published_at 2026-04-04T12:55:00Z
9
value 0.00069
scoring_system epss
scoring_elements 0.21213
published_at 2026-04-07T12:55:00Z
10
value 0.00094
scoring_system epss
scoring_elements 0.26028
published_at 2026-04-29T12:55:00Z
11
value 0.00094
scoring_system epss
scoring_elements 0.26157
published_at 2026-04-21T12:55:00Z
12
value 0.00094
scoring_system epss
scoring_elements 0.26082
published_at 2026-04-24T12:55:00Z
13
value 0.00094
scoring_system epss
scoring_elements 0.26078
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-36615
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36615
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36615
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/ffmpeg/ffmpeg/commit/0ba058579f332b3060d8470a04ddd3fbf305be61
reference_id 0ba058579f332b3060d8470a04ddd3fbf305be61
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:22:10Z/
url https://github.com/ffmpeg/ffmpeg/commit/0ba058579f332b3060d8470a04ddd3fbf305be61
4
reference_url https://gist.github.com/1047524396/c44e5eaafa8f408eea0c9411205990fb
reference_id c44e5eaafa8f408eea0c9411205990fb
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:22:10Z/
url https://gist.github.com/1047524396/c44e5eaafa8f408eea0c9411205990fb
5
reference_url https://github.com/FFmpeg/FFmpeg/blob/n7.0/libavcodec/vp9.c#L1738
reference_id vp9.c#L1738
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:22:10Z/
url https://github.com/FFmpeg/FFmpeg/blob/n7.0/libavcodec/vp9.c#L1738
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1
1
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
aliases CVE-2024-36615
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e9kf-tzg8-9bht
1
url VCID-grh1-jxmf-dqdv
vulnerability_id VCID-grh1-jxmf-dqdv
summary In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, potentially resulting in undefined behavior or crashes during the decoding process.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-35369
reference_id
reference_type
scores
0
value 0.0004
scoring_system epss
scoring_elements 0.11968
published_at 2026-04-29T12:55:00Z
1
value 0.0004
scoring_system epss
scoring_elements 0.12209
published_at 2026-04-11T12:55:00Z
2
value 0.0004
scoring_system epss
scoring_elements 0.12172
published_at 2026-04-12T12:55:00Z
3
value 0.0004
scoring_system epss
scoring_elements 0.12137
published_at 2026-04-13T12:55:00Z
4
value 0.0004
scoring_system epss
scoring_elements 0.12008
published_at 2026-04-16T12:55:00Z
5
value 0.0004
scoring_system epss
scoring_elements 0.12003
published_at 2026-04-18T12:55:00Z
6
value 0.0004
scoring_system epss
scoring_elements 0.12121
published_at 2026-04-21T12:55:00Z
7
value 0.0004
scoring_system epss
scoring_elements 0.12102
published_at 2026-04-24T12:55:00Z
8
value 0.0004
scoring_system epss
scoring_elements 0.12225
published_at 2026-04-02T12:55:00Z
9
value 0.0004
scoring_system epss
scoring_elements 0.12269
published_at 2026-04-04T12:55:00Z
10
value 0.0004
scoring_system epss
scoring_elements 0.12069
published_at 2026-04-26T12:55:00Z
11
value 0.0004
scoring_system epss
scoring_elements 0.1215
published_at 2026-04-08T12:55:00Z
12
value 0.0004
scoring_system epss
scoring_elements 0.12201
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-35369
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://github.com/ffmpeg/ffmpeg/commit/0895ef0d6d6406ee6cd158fc4d47d80f201b8e9c
reference_id 0895ef0d6d6406ee6cd158fc4d47d80f201b8e9c
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-29T17:11:01Z/
url https://github.com/ffmpeg/ffmpeg/commit/0895ef0d6d6406ee6cd158fc4d47d80f201b8e9c
3
reference_url https://gist.github.com/1047524396/455093807666f2e351d674750c8cd0b8
reference_id 455093807666f2e351d674750c8cd0b8
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-29T17:11:01Z/
url https://gist.github.com/1047524396/455093807666f2e351d674750c8cd0b8
4
reference_url https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/speexdec.c#L1423
reference_id speexdec.c#L1423
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-29T17:11:01Z/
url https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/speexdec.c#L1423
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
aliases CVE-2024-35369
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-grh1-jxmf-dqdv
2
url VCID-mun9-fyvn-8kfs
vulnerability_id VCID-mun9-fyvn-8kfs
summary A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-6601
reference_id
reference_type
scores
0
value 0.00039
scoring_system epss
scoring_elements 0.11658
published_at 2026-04-29T12:55:00Z
1
value 0.00039
scoring_system epss
scoring_elements 0.11921
published_at 2026-04-02T12:55:00Z
2
value 0.00039
scoring_system epss
scoring_elements 0.11817
published_at 2026-04-21T12:55:00Z
3
value 0.00039
scoring_system epss
scoring_elements 0.11786
published_at 2026-04-24T12:55:00Z
4
value 0.00039
scoring_system epss
scoring_elements 0.1174
published_at 2026-04-26T12:55:00Z
5
value 0.00039
scoring_system epss
scoring_elements 0.11968
published_at 2026-04-04T12:55:00Z
6
value 0.00039
scoring_system epss
scoring_elements 0.11757
published_at 2026-04-07T12:55:00Z
7
value 0.00039
scoring_system epss
scoring_elements 0.1184
published_at 2026-04-08T12:55:00Z
8
value 0.00039
scoring_system epss
scoring_elements 0.11891
published_at 2026-04-09T12:55:00Z
9
value 0.00039
scoring_system epss
scoring_elements 0.11902
published_at 2026-04-11T12:55:00Z
10
value 0.00039
scoring_system epss
scoring_elements 0.11864
published_at 2026-04-12T12:55:00Z
11
value 0.00039
scoring_system epss
scoring_elements 0.11836
published_at 2026-04-13T12:55:00Z
12
value 0.00039
scoring_system epss
scoring_elements 0.11701
published_at 2026-04-16T12:55:00Z
13
value 0.00039
scoring_system epss
scoring_elements 0.117
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-6601
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6601
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6601
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2253172
reference_id show_bug.cgi?id=2253172
reference_type
scores
0
value 4.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-06T17:07:37Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2253172
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
aliases CVE-2023-6601
risk_score 2.1
exploitability 0.5
weighted_severity 4.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mun9-fyvn-8kfs
3
url VCID-ns98-tu4j-sfd5
vulnerability_id VCID-ns98-tu4j-sfd5
summary FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-31578
reference_id
reference_type
scores
0
value 0.00278
scoring_system epss
scoring_elements 0.51226
published_at 2026-04-21T12:55:00Z
1
value 0.00323
scoring_system epss
scoring_elements 0.55417
published_at 2026-04-18T12:55:00Z
2
value 0.00323
scoring_system epss
scoring_elements 0.55413
published_at 2026-04-16T12:55:00Z
3
value 0.00323
scoring_system epss
scoring_elements 0.55378
published_at 2026-04-13T12:55:00Z
4
value 0.00323
scoring_system epss
scoring_elements 0.55396
published_at 2026-04-12T12:55:00Z
5
value 0.00323
scoring_system epss
scoring_elements 0.55418
published_at 2026-04-11T12:55:00Z
6
value 0.00323
scoring_system epss
scoring_elements 0.55407
published_at 2026-04-09T12:55:00Z
7
value 0.00323
scoring_system epss
scoring_elements 0.55357
published_at 2026-04-07T12:55:00Z
8
value 0.00323
scoring_system epss
scoring_elements 0.55354
published_at 2026-04-02T12:55:00Z
9
value 0.00323
scoring_system epss
scoring_elements 0.55379
published_at 2026-04-04T12:55:00Z
10
value 0.00332
scoring_system epss
scoring_elements 0.56044
published_at 2026-04-29T12:55:00Z
11
value 0.00332
scoring_system epss
scoring_elements 0.56048
published_at 2026-04-24T12:55:00Z
12
value 0.00332
scoring_system epss
scoring_elements 0.56069
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-31578
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31578
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31578
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/ffmpeg/ffmpeg/commit/3bb00c0a420c3ce83c6fafee30270d69622ccad7
reference_id 3bb00c0a420c3ce83c6fafee30270d69622ccad7
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-10T18:55:14Z/
url https://github.com/ffmpeg/ffmpeg/commit/3bb00c0a420c3ce83c6fafee30270d69622ccad7
4
reference_url https://gist.github.com/1047524396/45400cce5859d78dcd3a62010df8d179
reference_id 45400cce5859d78dcd3a62010df8d179
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-10T18:55:14Z/
url https://gist.github.com/1047524396/45400cce5859d78dcd3a62010df8d179
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
reference_id 6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-10T18:55:14Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/
reference_id IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-10T18:55:14Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/
reference_id LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-10T18:55:14Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/
8
reference_url https://usn.ubuntu.com/6803-1/
reference_id USN-6803-1
reference_type
scores
url https://usn.ubuntu.com/6803-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1
1
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
aliases CVE-2024-31578
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ns98-tu4j-sfd5
4
url VCID-uakc-kpg5-2ug5
vulnerability_id VCID-uakc-kpg5-2ug5
summary Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service (DoS) via the af_dialoguenhance.c:261:5 in the de_stereo component.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-49528
reference_id
reference_type
scores
0
value 0.00025
scoring_system epss
scoring_elements 0.06941
published_at 2026-04-29T12:55:00Z
1
value 0.00025
scoring_system epss
scoring_elements 0.06814
published_at 2026-04-02T12:55:00Z
2
value 0.00025
scoring_system epss
scoring_elements 0.0693
published_at 2026-04-09T12:55:00Z
3
value 0.00025
scoring_system epss
scoring_elements 0.06926
published_at 2026-04-11T12:55:00Z
4
value 0.00025
scoring_system epss
scoring_elements 0.06919
published_at 2026-04-12T12:55:00Z
5
value 0.00025
scoring_system epss
scoring_elements 0.06914
published_at 2026-04-13T12:55:00Z
6
value 0.00025
scoring_system epss
scoring_elements 0.06853
published_at 2026-04-16T12:55:00Z
7
value 0.00025
scoring_system epss
scoring_elements 0.06835
published_at 2026-04-18T12:55:00Z
8
value 0.00025
scoring_system epss
scoring_elements 0.06981
published_at 2026-04-21T12:55:00Z
9
value 0.00025
scoring_system epss
scoring_elements 0.06968
published_at 2026-04-24T12:55:00Z
10
value 0.00025
scoring_system epss
scoring_elements 0.06972
published_at 2026-04-26T12:55:00Z
11
value 0.00025
scoring_system epss
scoring_elements 0.06858
published_at 2026-04-04T12:55:00Z
12
value 0.00025
scoring_system epss
scoring_elements 0.06844
published_at 2026-04-07T12:55:00Z
13
value 0.00025
scoring_system epss
scoring_elements 0.06899
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-49528
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://trac.ffmpeg.org/ticket/10691
reference_id 10691
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-04-19T18:37:01Z/
url https://trac.ffmpeg.org/ticket/10691
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
reference_id 6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-04-19T18:37:01Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/
reference_id IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-04-19T18:37:01Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/
reference_id LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-04-19T18:37:01Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/
6
reference_url https://usn.ubuntu.com/6803-1/
reference_id USN-6803-1
reference_type
scores
url https://usn.ubuntu.com/6803-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
aliases CVE-2023-49528
risk_score 3.6
exploitability 0.5
weighted_severity 7.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uakc-kpg5-2ug5
5
url VCID-wrb6-w8ps-uuge
vulnerability_id VCID-wrb6-w8ps-uuge
summary ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10256.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10256.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-10256
reference_id
reference_type
scores
0
value 7e-05
scoring_system epss
scoring_elements 0.00544
published_at 2026-04-29T12:55:00Z
1
value 8e-05
scoring_system epss
scoring_elements 0.00722
published_at 2026-04-02T12:55:00Z
2
value 8e-05
scoring_system epss
scoring_elements 0.00704
published_at 2026-04-12T12:55:00Z
3
value 8e-05
scoring_system epss
scoring_elements 0.00705
published_at 2026-04-13T12:55:00Z
4
value 8e-05
scoring_system epss
scoring_elements 0.00702
published_at 2026-04-16T12:55:00Z
5
value 8e-05
scoring_system epss
scoring_elements 0.00708
published_at 2026-04-18T12:55:00Z
6
value 8e-05
scoring_system epss
scoring_elements 0.00748
published_at 2026-04-21T12:55:00Z
7
value 8e-05
scoring_system epss
scoring_elements 0.0075
published_at 2026-04-24T12:55:00Z
8
value 8e-05
scoring_system epss
scoring_elements 0.00751
published_at 2026-04-26T12:55:00Z
9
value 8e-05
scoring_system epss
scoring_elements 0.00719
published_at 2026-04-04T12:55:00Z
10
value 8e-05
scoring_system epss
scoring_elements 0.00724
published_at 2026-04-07T12:55:00Z
11
value 8e-05
scoring_system epss
scoring_elements 0.00723
published_at 2026-04-08T12:55:00Z
12
value 8e-05
scoring_system epss
scoring_elements 0.00713
published_at 2026-04-09T12:55:00Z
13
value 8e-05
scoring_system epss
scoring_elements 0.0071
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-10256
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10256
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-10256
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2394495
reference_id 2394495
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2394495
5
reference_url https://github.com/FFmpeg/FFmpeg/commit/a25462482c02c004d685a8fcf2fa63955aaa0931
reference_id a25462482c02c004d685a8fcf2fa63955aaa0931
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://github.com/FFmpeg/FFmpeg/commit/a25462482c02c004d685a8fcf2fa63955aaa0931
6
reference_url https://access.redhat.com/security/cve/CVE-2025-10256
reference_id CVE-2025-10256
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://access.redhat.com/security/cve/CVE-2025-10256
7
reference_url https://github.com/FFmpeg/FFmpeg/commit/d3be186ed1bcdcf2c093d6b13a0e66dc5132be2a
reference_id d3be186ed1bcdcf2c093d6b13a0e66dc5132be2a
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-25T16:54:58Z/
url https://github.com/FFmpeg/FFmpeg/commit/d3be186ed1bcdcf2c093d6b13a0e66dc5132be2a
8
reference_url https://usn.ubuntu.com/7830-1/
reference_id USN-7830-1
reference_type
scores
url https://usn.ubuntu.com/7830-1/
fixed_packages
0
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1
1
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
aliases CVE-2025-10256
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wrb6-w8ps-uuge
Risk_score2.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1