Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gpac gpac 0.8.0 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-20169
An issue exists in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trak_Read() in isomedia/box_code_base.c.
Gpac Gpac 0.8.0
Gpac Gpac 0.9.0
5.5
CVSSv3
CVE-2020-24829
An issue exists in GPAC v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.
Gpac Gpac 0.8.0
7.5
CVSSv3
CVE-2020-19750
An issue exists in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read.
Gpac Gpac 0.8.0
9.1
CVSSv3
CVE-2020-19751
An issue exists in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap-based buffer over-read.
Gpac Gpac 0.8.0
5.5
CVSSv3
CVE-2020-19488
An issue exists in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows malicious users to cause a Denial of Service due to an invalid read on function ilst_item_Read.
Gpac Gpac 0.8.0
9.8
CVSSv3
CVE-2020-11558
An issue exists in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_...
Gpac Gpac 0.8.0
5.5
CVSSv3
CVE-2020-22352
The gf_dash_segmenter_probe_input function in GPAC v0.8 allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
Gpac Gpac 0.8.0
5.5
CVSSv3
CVE-2020-22673
Memory leak in the senc_Parse function in MP4Box in gpac 0.8.0 allows malicious users to cause a denial of service (DoS) via a crafted input.
Gpac Gpac 0.8.0
5.5
CVSSv3
CVE-2020-22674
An issue exists in gpac 0.8.0. An invalid memory dereference exists in the function FixTrackID located in isom_intern.c, which allows malicious users to cause a denial of service (DoS) via a crafted input.
Gpac Gpac 0.8.0
5.5
CVSSv3
CVE-2020-22677
An issue exists in gpac 0.8.0. The dump_data_hex function in box_dump.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
Gpac Gpac 0.8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »