VulnerableCode Vulnerability Details

System	Score	Found at
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00255	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00270	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00270	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00270	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00270	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00351	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00428	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00428	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00428	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00428	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00428	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00428	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
epss	0.00833	https://api.first.org/data/v1/epss?cve=CVE-2020-22017
cvssv3.1	5.5	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2	6.8	https://nvd.nist.gov/vuln/detail/CVE-2020-22017
cvssv3	8.8	https://nvd.nist.gov/vuln/detail/CVE-2020-22017
cvssv3.1	8.8	https://nvd.nist.gov/vuln/detail/CVE-2020-22017

System

Score

Found at

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00255

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00270

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00270

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00270

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00270

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00351

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00428

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00428

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00428

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00428

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00428

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00428

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

epss

0.00833

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

cvssv3.1

5.5

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

cvssv2

6.8

https://nvd.nist.gov/vuln/detail/CVE-2020-22017

cvssv3

8.8

https://nvd.nist.gov/vuln/detail/CVE-2020-22017

cvssv3.1

8.8

https://nvd.nist.gov/vuln/detail/CVE-2020-22017

Reference id

Reference type

URL

https://api.first.org/data/v1/epss?cve=CVE-2020-22017

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-20445

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-20446

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-20453

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21041

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22015

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22016

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22017

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22019

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22020

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22021

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22022

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22023

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22025

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22026

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22027

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22028

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22029

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22030

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22031

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22032

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22033

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22034

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22035

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22036

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22037

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22049

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22054

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35965

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38114

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38171

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38291

https://cwe.mitre.org/data/definitions/122.html

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

https://trac.ffmpeg.org/ticket/8309

https://www.debian.org/security/2021/dsa-4990

cpe:2.3:a:ffmpeg:ffmpeg:4.2:-:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ffmpeg:ffmpeg:4.2:-:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

CVE-2020-22017

https://nvd.nist.gov/vuln/detail/CVE-2020-22017

USN-5472-1

https://usn.ubuntu.com/5472-1/

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2020-22017

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2020-22017

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2020-22017

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.

There are no relevant records.

Vulnerability ID	VCID-rxtb-21q1-aaaj
Aliases	CVE-2020-22017
Summary	A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at ff_fill_rectangle in libavfilter/drawutils.c, which might lead to memory corruption and other potential consequences.
Status	Published
Exploitability	0.5
Weighted Severity	7.9
Risk	4.0
Affected and Fixed Packages	Package Details

Percentile	0.65814
EPSS Score	0.00255
Published At	Nov. 1, 2024, midnight