Search for vulnerabilities
Vulnerability details: VCID-6zxu-m4yy-aaab
Vulnerability ID VCID-6zxu-m4yy-aaab
Aliases CVE-2014-2263
Summary The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB) muxer (libavformat/mpegtsenc.c) in FFmpeg, possibly 2.1 and earlier, allows remote attackers to have unspecified impact and vectors, which trigger an out-of-bounds write.
Status Published
Exploitability 0.5
Weighted Severity 6.1
Risk 3.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
System Score Found at
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00730 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00773 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00773 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00773 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00773 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.00973 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.01014 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
epss 0.0113 https://api.first.org/data/v1/epss?cve=CVE-2014-2263
cvssv2 6.8 https://nvd.nist.gov/vuln/detail/CVE-2014-2263
Reference id Reference type URL
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=842b6c14bc
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=842b6c14bc
https://api.first.org/data/v1/epss?cve=CVE-2014-2263
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3934
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3935
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0848
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0851
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0852
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0860
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0868
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3672
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3674
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2263
http://secunia.com/advisories/56971
https://exchange.xforce.ibmcloud.com/vulnerabilities/91174
https://security.gentoo.org/glsa/201603-06
http://www.securityfocus.com/bid/65560
http://www.securitytracker.com/id/1029850
cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*
cpe:2.3:a:ffmpeg:ffmpeg:2.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:2.0:*:*:*:*:*:*:*
cpe:2.3:a:ffmpeg:ffmpeg:2.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ffmpeg:ffmpeg:2.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ffmpeg:ffmpeg:2.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:2.0.3:*:*:*:*:*:*:*
CVE-2014-2263 https://nvd.nist.gov/vuln/detail/CVE-2014-2263
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2014-2263
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.81133
EPSS Score 0.00730
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.