Primary

Context

FFmpeg Unchecked Return Value, Out-of-bounds Read Vulnerability in libavfilter af_pan Allowing Read of Sensitive Constants

Vulnerability

Patched

A vulnerability in FFmpeg's libavfilter component, specifically in the af_pan audio filter, has been identified. This issue involves an unchecked return value leading to an out-of-bounds read, which allows the reading of sensitive constants within an executable. The vulnerability was present in FFmpeg version 7.1 and has been fixed in a subsequent update.

Impact

Exploitation of this vulnerability could lead to a memory data leak, allowing the extraction of sensitive information from the application's memory.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FFmpeg Unchecked Return Value, Out-of-bounds Read Vulnerability in libavfilter af_pan Allowing Read of Sensitive Constants

Vulnerability

Impact

Affected Products

FFmpeg

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating