Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gpac gpac vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-46489
GPAC version 2.1-DEV-rev505-gb9577e6ad-master exists to contain a memory leak via the gf_isom_box_parse_ex function at box_funcs.c.
Gpac Gpac
1 Github repository
NA
CVE-2022-46490
GPAC version 2.1-DEV-rev505-gb9577e6ad-master exists to contain a memory leak via the afrt_box_read function at box_code_adobe.c.
Gpac Gpac
1 Github repository
NA
CVE-2022-38530
GPAC v2.1-DEV-rev232-gfcaa01ebb-master exists to contain a stack overflow when processing ISOM_IOD.
Gpac Gpac
383
VMScore
CVE-2022-24249
A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in /box_code_base.c, which causes a Denial of Service. This vulnerability was fixed in commit 71f9871.
Gpac Gpac
383
VMScore
CVE-2019-20628
An issue exists in libgpac.a in GPAC prior to 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
Gpac Gpac
NA
CVE-2022-3957
A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotel...
Gpac Gpac
383
VMScore
CVE-2021-40559
A null pointer deference vulnerability exists in gpac up to and including 1.0.1 via the naludmx_parse_nal_avc function in reframe_nalu, which allows a denail of service.
Gpac Gpac
383
VMScore
CVE-2021-40564
A Segmentation fault caused by null pointer dereference vulnerability eists in Gpac up to and including 1.0.2 via the avc_parse_slice function in av_parsers.c when using mp4box, which causes a denial of service.
Gpac Gpac
383
VMScore
CVE-2021-40607
The schm_box_size function in GPAC 1.0.1 allows malicious users to cause a denial of service via a crafted file in the MP4Box command.
Gpac Gpac
383
VMScore
CVE-2021-40608
The gf_hinter_track_finalize function in GPAC 1.0.1 allows malicious users to cause a denial of service via a crafted file in the MP4Box command.
Gpac Gpac
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »