Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
CVE-2021-31258 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-31258
The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
6.8
CVSSv2
CVE-2021-31254
Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows malicious users to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes.
6.8
CVSSv2
CVE-2021-31255
Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 allows malicious users to cause a denial of service or execute arbitrary code via a crafted file.
4.3
CVSSv2
CVE-2021-31256
Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows malicious users to read memory via a crafted file.
Gpac Gpac 1.0.1
4.3
CVSSv2
CVE-2021-31259
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
4.3
CVSSv2
CVE-2021-31261
The gf_hinter_track_new function in GPAC 1.0.1 allows malicious users to read memory via a crafted file in the MP4Box command.
4.3
CVSSv2
CVE-2021-31262
The AV1_DuplicateConfig function in GPAC 1.0.1 allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
4.3
CVSSv2
CVE-2021-31257
The HintFile function in GPAC 1.0.1 allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
4.3
CVSSv2
CVE-2021-31260
The MergeTrack function in GPAC 1.0.1 allows malicious users to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
6.8
CVSSv2
CVE-2021-29279
There is a integer overflow in function filter_core/filter_props.c:gf_props_assign_value in GPAC 1.0.1. In which, the arg const GF_PropertyValue *value,maybe value->value.data.size is a negative number. In result, memcpy in gf_props_assign_value failed.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »