{"vulnerability": "cve-2024-22860", "sightings": [{"uuid": "0420cfda-6688-4273-a38d-c6a13ad94370", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-22860", "type": "published-proof-of-concept", "source": "https://t.me/orderofsixangles/2145", "content": "\u0414\u0432\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u044b\u0445 CVE (Integer Overflow) \u043d\u0430\u0439\u0434\u0435\u043d\u043d\u044b\u0445 \u0444\u0430\u0437\u0437\u0438\u043d\u0433\u043e\u043c\n\nhttps://securityonline.info/cve-2024-22860-cve-2024-22862-critical-ffmpeg-remote-code-execution-flaws/", "creation_timestamp": "2024-01-30T04:44:46.000000Z"}, {"uuid": "9f6fc066-2cdf-4bfc-97ca-f0c61138c6ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-22860", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17743", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22860\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the jpegxl_anim_read_packet component in the JPEG XL Animation decoder.\n\ud83d\udccf Published: 2024-01-27T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-09T18:49:48.283Z\n\ud83d\udd17 References:\n1. https://github.com/FFmpeg/FFmpeg/commit/d2e8974699a9e35cc1a926bf74a972300d629cd5\n2. https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61991", "creation_timestamp": "2025-06-09T19:48:03.000000Z"}, {"uuid": "58d0b96e-90f3-4a65-9144-d5991e5b48ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-22860", "type": "seen", "source": "https://t.me/ctinow/189287", "content": "https://ift.tt/FzCLBd4\nCVE-2024-22860 | FFmpeg up to 6.0 JPEG XL Animation Decoder jpegxl_anim_read_packet integer overflow", "creation_timestamp": "2024-02-21T07:36:31.000000Z"}, {"uuid": "5b0c8d2c-c01e-427a-96ef-1b3fe0a36d02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-22860", "type": "seen", "source": "https://t.me/ctinow/174660", "content": "https://ift.tt/eECvp2N\nCVE-2024-22860", "creation_timestamp": "2024-01-27T07:26:40.000000Z"}, {"uuid": "fc1089ba-0b07-4820-8193-92c47f2fca20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-22860", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/3264", "content": "#ExploitObserverAlert\n\nCVE-2024-22860\n\nDESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-22860. Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the jpegxl_anim_read_packet component in the JPEG XL Animation decoder.", "creation_timestamp": "2024-01-28T10:06:56.000000Z"}]}