Home > Vulnerability Database > CVE-2025-7700

Mend.io Vulnerability Database

CVE-2025-7700

Good to know:

Date: November 7, 2025

A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to crash when processing certain malformed audio files. While it does not lead to data theft or system control, it can be used to disrupt services and cause a denial of service.

Severity Score

5.3

Related Resources (4)

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2380420

Url: https://access.redhat.com/security/cve/CVE-2025-7700

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-7700

Url: https://www.mend.io/vulnerability-database/CVE-2025-7700

Severity Score

5.3

Weakness Type (CWE)

NULL Pointer Dereference

CWE-476

Top Fix

Upgrade Version

Upgrade to version ffmpeg - 5.1.7;ffmpeg - 7.1.2;https://git.ffmpeg.org/ffmpeg.git - n5.1.7;https://git.ffmpeg.org/ffmpeg.git - n7.1.2

Learn More

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2025-7700

Good to know:

Date: November 7, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?