Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gpac gpac vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-36191
A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isomedia/avc_ext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242.
Gpac Gpac
9.8
CVSSv3
CVE-2022-36190
GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.
Gpac Gpac
7.8
CVSSv3
CVE-2021-32268
Buffer overflow vulnerability in function gf_fprintf in os_file.c in gpac prior to 1.0.1 allows malicious users to execute arbitrary code. The fixed version is 1.0.1.
Gpac Gpac
5.5
CVSSv3
CVE-2022-46489
GPAC version 2.1-DEV-rev505-gb9577e6ad-master exists to contain a memory leak via the gf_isom_box_parse_ex function at box_funcs.c.
Gpac Gpac
1 Github repository
5.5
CVSSv3
CVE-2022-46490
GPAC version 2.1-DEV-rev505-gb9577e6ad-master exists to contain a memory leak via the afrt_box_read function at box_code_adobe.c.
Gpac Gpac
1 Github repository
5.5
CVSSv3
CVE-2019-20628
An issue exists in libgpac.a in GPAC prior to 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
Gpac Gpac
5.5
CVSSv3
CVE-2019-20630
An issue exists in libgpac.a in GPAC prior to 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.
Gpac Gpac
5.5
CVSSv3
CVE-2019-20631
An issue exists in libgpac.a in GPAC prior to 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_list_count in utils/list.c that can cause a denial of service via a crafted MP4 file.
Gpac Gpac
5.5
CVSSv3
CVE-2019-20632
An issue exists in libgpac.a in GPAC prior to 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_odf_delete_descriptor in odf/desc_private.c that can cause a denial of service via a crafted MP4 file.
Gpac Gpac
5.5
CVSSv3
CVE-2023-4778
Out-of-bounds Read in GitHub repository gpac/gpac before 2.3-DEV.
Gpac Gpac
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »