Medium
CVSS 5.5
Overview
FFmpeg prior to commit bf814 was discovered to contain an out of bounds read via the dist->alphabet_size variable in the read_vlc_prefix() function.
CVE-2023-46407
FFmpeg prior to commit bf814 was discovered to contain an out of bounds read via...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 5.5 (MEDIUM)
- Detected tags: oob_read (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.