Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-50120

Published: 10/01/2024 Updated: 18/01/2024
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Gpac

Vulnerability Summary

MP4Box GPAC version 2.3-DEV-rev636-gfbd7e13aa-master exists to contain an infinite loop in the function av1_uvlc at media_tools/av_parsers.c. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted MP4 file.

Vulnerable Product Search on Vulmon Subscribe to Product

gpac gpac 2.3

Vendor Advisories

Debian CVElist Bug Report Logs: gpac: CVE-2023-50120
Debian Bug report logs - #1060696 gpac: CVE-2023-50120 Package: src:gpac; Maintainer for src:gpac is Debian QA Group <packages@qadebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 12 Jan 2024 22:15:09 UTC Severity: normal Tags: security, upstream Found in version gpac/221+dfsg1-3 Forwarde ...

References

CWE-835https://github.com/gpac/gpac/issues/2698https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1060696https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook