CVE-2014-8001
Cisco OpenH264 < 1.2.0 - Remote Code Execution via Encoded Media File
Title source: llmDescription
Buffer overflow in decode.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers to execute arbitrary code via an encoded media file.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=36500
Patch x_refsource_confirm
https://github.com/cisco/openh264/pull/1088/files
Scores
EPSS
0.0255
EPSS Percentile
83.2%
Details
CWE
CWE-119
Status
published
Products (1)
cisco/openh264
< 1.2.0
Published
Nov 25, 2014
Tracked Since
Feb 18, 2026