Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-grh1-jxmf-dqdv
SummaryIn FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, potentially resulting in undefined behavior or crashes during the decoding process.
Aliases
0
alias CVE-2024-35369
Fixed_packages
0
url pkg:deb/debian/ffmpeg@0?distro=trixie
purl pkg:deb/debian/ffmpeg@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@0%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:4.3.7-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-mun9-fyvn-8kfs
2
vulnerability VCID-ujjc-ays1-gfc2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:4.3.7-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/ffmpeg@7:7.0.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.0.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.0.1-3%3Fdistro=trixie
3
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1%3Fdistro=trixie
4
url pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
purl pkg:deb/debian/ffmpeg@7:7.1.3-0%2Bdeb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:7.1.3-0%252Bdeb13u1
5
url pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
purl pkg:deb/debian/ffmpeg@7:8.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:8.1-3%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1%3Fdistro=trixie
1
url pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
purl pkg:deb/debian/ffmpeg@7:5.1.8-0%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2qje-t52h-fyfk
1
vulnerability VCID-352p-mxyy-k3bu
2
vulnerability VCID-e9kf-tzg8-9bht
3
vulnerability VCID-grh1-jxmf-dqdv
4
vulnerability VCID-mun9-fyvn-8kfs
5
vulnerability VCID-ns98-tu4j-sfd5
6
vulnerability VCID-uakc-kpg5-2ug5
7
vulnerability VCID-wrb6-w8ps-uuge
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ffmpeg@7:5.1.8-0%252Bdeb12u1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-35369
reference_id
reference_type
scores
0
value 0.0004
scoring_system epss
scoring_elements 0.11881
published_at 2026-05-05T12:55:00Z
1
value 0.0004
scoring_system epss
scoring_elements 0.12172
published_at 2026-04-12T12:55:00Z
2
value 0.0004
scoring_system epss
scoring_elements 0.12137
published_at 2026-04-13T12:55:00Z
3
value 0.0004
scoring_system epss
scoring_elements 0.12008
published_at 2026-04-16T12:55:00Z
4
value 0.0004
scoring_system epss
scoring_elements 0.12003
published_at 2026-04-18T12:55:00Z
5
value 0.0004
scoring_system epss
scoring_elements 0.12121
published_at 2026-04-21T12:55:00Z
6
value 0.0004
scoring_system epss
scoring_elements 0.12102
published_at 2026-04-24T12:55:00Z
7
value 0.0004
scoring_system epss
scoring_elements 0.11968
published_at 2026-04-29T12:55:00Z
8
value 0.0004
scoring_system epss
scoring_elements 0.12225
published_at 2026-04-02T12:55:00Z
9
value 0.0004
scoring_system epss
scoring_elements 0.12269
published_at 2026-04-04T12:55:00Z
10
value 0.0004
scoring_system epss
scoring_elements 0.12069
published_at 2026-04-26T12:55:00Z
11
value 0.0004
scoring_system epss
scoring_elements 0.1215
published_at 2026-04-08T12:55:00Z
12
value 0.0004
scoring_system epss
scoring_elements 0.12201
published_at 2026-04-09T12:55:00Z
13
value 0.0004
scoring_system epss
scoring_elements 0.12209
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-35369
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://github.com/ffmpeg/ffmpeg/commit/0895ef0d6d6406ee6cd158fc4d47d80f201b8e9c
reference_id 0895ef0d6d6406ee6cd158fc4d47d80f201b8e9c
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-29T17:11:01Z/
url https://github.com/ffmpeg/ffmpeg/commit/0895ef0d6d6406ee6cd158fc4d47d80f201b8e9c
3
reference_url https://gist.github.com/1047524396/455093807666f2e351d674750c8cd0b8
reference_id 455093807666f2e351d674750c8cd0b8
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-29T17:11:01Z/
url https://gist.github.com/1047524396/455093807666f2e351d674750c8cd0b8
4
reference_url https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/speexdec.c#L1423
reference_id speexdec.c#L1423
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-29T17:11:01Z/
url https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/speexdec.c#L1423
Weaknesses
Exploits
Severity_range_score5.5 - 5.5
Exploitability0.5
Weighted_severity5.0
Risk_score2.5
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-grh1-jxmf-dqdv