CVE-2025-22920

MEDIUM Year: 2025
CVSS v3 Score
5.3
Medium
Weakness Type
CWE-122
View all →

Vulnerability Description

A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger a memory corruption via supplying a crafted media file in avformat when processing tile grid group streams. This can lead to a Denial of Service (DoS).

Related Vulnerabilities

CVE-2018-1120

MEDIUM
CVSS:5.3(Medium)

A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cau...

CWE-1222018

CVE-2018-7519

MEDIUM
CVSS:5.3(Medium)

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.

CWE-1222018

CVE-2022-0713

MEDIUM
CVSS:5.3(Medium)

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.

CWE-1222022

CVE-2022-1437

MEDIUM
CVSS:5.3(Medium)

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read...

CWE-1222022

CVE-2024-21596

MEDIUM
CVSS:5.3(Medium)

A Heap-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network based attacker to cause a Denial of...

CWE-1222024

CVE-2024-29013

MEDIUM
CVSS:5.3(Medium)

Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function.

CWE-1222024