{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T04:46:06.177","vulnerabilities":[{"cve":{"id":"CVE-2025-22920","sourceIdentifier":"cve@mitre.org","published":"2025-02-18T23:15:10.160","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger a memory corruption via supplying a crafted media file in avformat when processing tile grid group streams. This can lead to a Denial of Service (DoS)."},{"lang":"es","value":"Una vulnerabilidad de desbordamiento de búfer de pila en FFmpeg anterior a el commit 4bf784c permite a los atacantes provocar una corrupción de memoria mediante el suministro de un archivo multimedia manipulado en avformat cuando se procesan transmisiones de grupos de cuadrículas de mosaicos. Esto puede provocar una denegación de servicio (DoS)."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/4bf784c0e5615c3f934e677d5de093a8be7da7ae","source":"cve@mitre.org"},{"url":"https://trac.ffmpeg.org/ticket/11389","source":"cve@mitre.org"}]}}]}