Information disclosure in Ffmpeg
CVE-2016-1897
FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the fi…
Vulnerability class: Information Disclosure
EPSS: 0.521 (98.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N.
Affected products
- Ffmpeg — versions 2.0, 2.0.1, 2.0.2
- Canonical Ubuntu_linux — versions 12.04
- Opensuse Leap — versions 42.1
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
References
- cve@mitre.org (Exploit, x_refsource_MISC)
- openSUSE-SU-2016:0243 (vendor-advisory, x_refsource_SUSE)
- 1034932 (vdb-entry, x_refsource_SECTRACK)
- GLSA-201705-08 (vendor-advisory, x_refsource_GENTOO)
- 80501 (vdb-entry, x_refsource_BID)
- USN-2944-1 (x_refsource_UBUNTU, vendor-advisory)
- [oss-security] 20160114 Re: Fwd: FFmpeg: stealing local files with HLS+concat (mailing-list, x_refsource_MLIST)
- SSA:2016-034-02 (vendor-advisory, x_refsource_SLACKWARE)
- DSA-3506 (vendor-advisory, x_refsource_DEBIAN)
- cve@mitre.org (Exploit, x_refsource_MISC)
Frequently asked questions
- What is CVE-2016-1897?
- CVE-2016-1897 is a medium-severity vulnerability in Ffmpeg, classified under Information Disclosure. CVSS score: 5.5/10. Published 2016-01-15.
- How severe is CVE-2016-1897?
- Medium severity. CVSS v3 base score is 5.5 out of 10.
- Is CVE-2016-1897 known to be exploited?
- 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.