CVE-2025-8586 | libav up to 12.3 MPEG File Parser /libavformat/utils.c ff_seek_frame_binary null pointer dereference (ID 11681)

A vulnerability, which was classified as problematic, was found in libav up to 12.3. This affects the function ff_seek_frame_binary of the file /libavformat/utils.c of the component MPEG File Parser. The manipulation leads to null pointer dereference. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is uniquely identified as CVE-2025-8586. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

The bug was initially reported by the researcher to the wrong project.

CVE-2025-8586 | libav up to 12.3 MPEG File Parser /libavformat/utils.c ff_seek_frame_binary null pointer dereference (ID 11681)

Post correlati

CVE-2024-5118 | SourceCodester Event Registration System 1.0 /admin/login.php username/password sql injection

CVE-2023-48617 | Adobe Experience Manager AEM Cloud Service/6.5.18.0 cross site scripting (APSB23-72)

CVE-2024-7197 | SourceCodester Complaints Report Management System 1.0 manage_complaint.php id sql injection

CVE-2024-36061 | EnGenius EWS356-FIT up to 1.1.30 Ping/Speed Test os command injection