How severe is CVE-2024-7055?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2024-7055?

This is classified as CWE-122, which is a common weakness in software security.

CVE-2024-7055 - MEDIUM Severity | CVSS 6.3

Vulnerability Description

A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 7.0.2 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-273651.

Related Vulnerabilities

CVE-2022-0518

MEDIUM

CVSS:6.3(Medium)

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.2.

CWE-1222022

CVE-2024-23154

MEDIUM

CVSS:6.3(Medium)

A maliciously crafted SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications, can be used to cause a Heap-based Overflow. A malicious actor can leverage this vulnerability to cause a ...

CWE-1222024

CVE-2024-2824

MEDIUM

CVSS:6.3(Medium)

A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer ov...

CWE-1222024