Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-em18-qcj8-dfgj
Vulnerability ID VCID-em18-qcj8-dfgj
Aliases CVE-2023-39616
Summary AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assign_frame_buffer_p in av1/common/av1_common_int.h.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
epss 0.00089 https://api.first.org/data/v1/epss?cve=CVE-2023-39616
ssvc Track https://bugs.chromium.org/p/aomedia/issues/detail?id=3372#c3
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-39616
detail?id=3372#c3 https://bugs.chromium.org/p/aomedia/issues/detail?id=3372#c3
No exploits are available.
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T13:24:51Z/ Found at https://bugs.chromium.org/p/aomedia/issues/detail?id=3372#c3
Exploit Prediction Scoring System (EPSS)
Percentile 0.25364
EPSS Score 0.00089
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-02T21:27:50.255307+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 38.1.0