CVE-2019-18214 HIGH

CVE-2019-18214

Vendor N/A
Product n/a
Published October 19, 2019
Last update August 5, 2024

CVSS base score

7.7/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.0/AC:L/AV:N/A:H/C:N/I:N/PR:L/S:C/UI:N

What the vulnerability does

01Description

The Video_Converter app 0.1.0 for Nextcloud allows denial of service (CPU and memory consumption) via multiple concurrent conversions because many FFmpeg processes may be running at once. (The workload is not queued for serial execution.)

Key dates

02Disclosure timeline

October 19, 2019 CVE published
August 5, 2024 Record updated