CVE-2026-7739

LOW 3.3

justdan96 tsMuxer hevc.cpp setFPS denial of service

CVSS Score

3.3

EPSS Score

0.0%

EPSS Percentile

0th

A weakness has been identified in justdan96 tsMuxer up to 2.7.0. This vulnerability affects the function HevcVpsUnit::setFPS of the file /AFLplusplus/tsMuxer_prev/tsMuxer/hevc.cpp. This manipulation of the argument track_id causes denial of service. The attack requires local access. The exploit has been made available to the public and could be used for attacks. This vulnerability only affects products that are no longer supported by the maintainer.

CWE	CWE-404
Vendor	justdan96
Product	tsmuxer
Published	May 4, 2026

Stay Ahead of the Next One

Get instant alerts for justdan96 tsmuxer

Be the first to know when new low vulnerabilities affecting justdan96 tsmuxer are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

justdan96 / tsMuxer

2.0 2.1 2.2 2.3 2.4 2.5 2.6 2.7.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/360914 vuldb.com: https://vuldb.com/vuln/360914/cti vuldb.com: https://vuldb.com/submit/807647 github.com: https://github.com/justdan96/tsMuxer/issues/895 github.com: https://github.com/user-attachments/files/16812270/poc1.zip github.com: https://github.com/justdan96/tsMuxer/

Credits

🔍 Fantasy (VulDB User)