Lucene search

RedosROS-20240902-06

HistorySep 02, 2024 - 12:00 a.m.

ROS-20240902-06

2024-09-0200:00:00

redos.red-soft.ru

vulnerability

gpac multimedia

buffer boundaries

exploitation

remote access

sensitive information

unix

CVSS3

7.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

AI Score

6.5

Confidence

Low

JSON

Vulnerability of swf_get_string() function of GPAC multimedia platform, is related to the operation exceeding the boundaries of the
buffer in memory. Exploitation of the vulnerability could allow an attacker acting remotely to gain
access to sensitive information

Vulnerability in the gf_dash_setup_period() function of the GPAC multimedia platform is related to an operation outside the buffer boundaries in memory.
buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely,
Gain access to sensitive information

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64gpac< 2.4.0-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	gpac	< 2.4.0-1	UNKNOWN

CVSS3

7.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

AI Score

6.5

Confidence

Low

JSON

Related for ROS-20240902-06