Search for vulnerabilities
Vulnerability details: VCID-3z4w-vru1-aaan
Vulnerability ID VCID-3z4w-vru1-aaan
Aliases CVE-2015-8218
Summary The decode_uncompressed function in libavcodec/faxcompr.c in FFmpeg before 2.8.2 does not validate uncompressed runs, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted CCITT FAX data.
Status Published
Exploitability 0.5
Weighted Severity 6.1
Risk 3.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-20 Improper Input Validation
System Score Found at
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00293 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00583 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
epss 0.00623 https://api.first.org/data/v1/epss?cve=CVE-2015-8218
cvssv2 6.8 https://nvd.nist.gov/vuln/detail/CVE-2015-8218
Reference id Reference type URL
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=d4a731b84a08f0f3839eaaaf82e97d8d9c67da46
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=d4a731b84a08f0f3839eaaaf82e97d8d9c67da46
http://lists.opensuse.org/opensuse-updates/2015-11/msg00146.html
https://api.first.org/data/v1/epss?cve=CVE-2015-8218
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8218
cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*
CVE-2015-8218 https://nvd.nist.gov/vuln/detail/CVE-2015-8218
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2015-8218
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.69707
EPSS Score 0.00293
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.