CVE-2023-39018

Name of the Vulnerable Software and Affected Versions FFmpeg versions 0.7.0 and below

Description A code injection issue was discovered in the net.bramp.ffmpeg.FFmpeg. component. This issue is exploited by passing an unchecked argument. However, it's noted that there are no realistic use cases where FFmpeg.java uses untrusted input for the path of the executable file, which has led to disputes over the vulnerability's significance.

Recommendations For FFmpeg versions 0.7.0 and below, at the moment, there is no information about a newer version that contains a fix for this vulnerability.