Out-of-bounds Write
CVE-2025-1594
Summary
A vulnerability, which was classified as critical, was found in FFmpeg. This affects the function 'ff_aac_search_for_tns' of the file 'libavcodec/aacenc_tns.c' of the component "AAC Encoder". The manipulation leads to Stack-based Buffer Overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This issue affects versions n2.8 through n5.1.6, n5.2-dev, n6.0 through n6.1.2, n6.2-dev, n7.0.1 through n7.0.2, n7.1 through n7.1.1, and n7.2-dev.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- REQUIRED
- NONE
- HIGH
- HIGH
CWE-787 - Out-of-Bounds Write
Out-of-bounds write vulnerability is a memory access bug that allows software to write data past the end or before the beginning of the intended buffer. This may result in the corruption of data, a crash, or arbitrary code execution.
Advisory Timeline
- Published
