CVE-2016-1897 in FFmpeginformazioni

Riassunto

di MITRE

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

14/01/2016

Divulgazione

14/01/2016

Moderazione

accettato

Voce

VDB-80278

CPE

pronto

CWE

CWE-200 (confermato)

CVSS

5.5 (NVD)

EPSS

0.14621

KEV

Attività

molto basso

Settore

Police, Education, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1897
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1897
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1897/

◂ Precedente Visione D'ensemble Il prossimo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!