vulnerability

FFmpeg: CVE-2023-47470: Out-of-bounds Write

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Nov 16, 2023	Dec 1, 2023	Jan 28, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Nov 16, 2023

Added

Dec 1, 2023

Modified

Jan 28, 2025

Description

Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service (DoS) via the ref_pic_list_struct function in libavcodec/evc_ps.c

Solution

misc-no-solution-exists

References

CVE-2023-47470
https://attackerkb.com/topics/CVE-2023-47470
URL-https://github.com/FFmpeg/FFmpeg/commit/4565747056a11356210ed8edcecb920105e40b60
URL-https://github.com/goldds96/Report/tree/main/FFmpeg

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today