CVE-2021-32437

2021-08-1120:15:08

Google

osv.dev

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.5%

JSON

The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

CPENameOperatorVersion
gpaceq1.0.1
gpaceq0.5.2
gpaceq0.7.1
gpaceq1.0.0
gpaceq0.8.0
gpaceq0.9.0
gpaceq0.6.0
gpaceq0.9.0-preview
gpaceq0.6.1
gpaceq0.7.0