GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the afrt_box_read function at box_code_adobe.c.
5.5CVSS
5.4AI Score
0.0005EPSS
GPAC MP4Box v2.1-DEV-rev574-g9d5bb184b contains a segmentation violation via the function gf_sm_load_init_swf at scene_manager/swf_parse.c
5.5CVSS
5.7AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b has a Buffer overflow in gf_vvc_read_pps_bs_internal function of media_tools/av_parsers.c
7.8CVSS
7.7AI Score
0.001EPSS
7.8CVSS
7.5AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow via gf_vvc_read_sps_bs_internal function of media_tools/av_parsers.c
7.8CVSS
7.6AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow in gf_text_process_sub function of filters/load_text.c
7.8CVSS
7.6AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is contains an Integer overflow vulnerability in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8316
7.1CVSS
7AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to heap use-after-free via filters/dmx_m2ts.c:470 in m2tsdmx_declare_pid
7.8CVSS
7.5AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Null pointer dereference via filters/dmx_m2ts.c:343 in m2tsdmx_declare_pid
7.8CVSS
7.5AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer overflow in hevc_parse_vps_extension function of media_tools/av_parsers.c
7.8CVSS
7.7AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in eac3_update_channels function of media_tools/av_parsers.c:9113
7.8CVSS
7.5AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8261
7.8CVSS
7.5AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev617-g85ce76efd is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8273
7.8CVSS
7.5AI Score
0.001EPSS
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevc_parse_vps_extension of media_tools/av_parsers.c:7662
7.8CVSS
7.8AI Score
0.001EPSS
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gf_hevc_read_vps_bs_internal of media_tools/av_parsers.c:8039
7.8CVSS
7.8AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to Buffer Overflow in gf_bs_read_data
7.8CVSS
7.6AI Score
0.001EPSS
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is has an integer overflow in isomedia/isom_write.c
7.8CVSS
7.8AI Score
0.001EPSS
GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 is vulnerable to Buffer Overflow via media_tools/av_parsers.c:4988 in gf_media_nalu_add_emulation_bytes
7.8CVSS
7.6AI Score
0.001EPSS
GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 has a segment fault (/stack overflow) due to infinite recursion in Media_GetSample isomedia/media.c:662
5.5CVSS
5.6AI Score
0.001EPSS
GPAC MP4box 2.1-DEV-rev649-ga8f438d20 is vulnerable to buffer overflow in h263dmx_process filters/reframe_h263.c:609
7.8CVSS
7.8AI Score
0.001EPSS
7.8CVSS
7.6AI Score
0.001EPSS
7.8CVSS
7.2AI Score
0.001EPSS
7.8CVSS
7.7AI Score
0.001EPSS
7.8CVSS
7.2AI Score
0.001EPSS
5.5CVSS
5.7AI Score
0.0005EPSS
7.8CVSS
7.7AI Score
0.001EPSS
A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3_dmx_process of the file filters/reframe_mp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been dis...
8.8CVSS
8.8AI Score
0.007EPSS
7.8CVSS
7.7AI Score
0.001EPSS
A vulnerability, which was classified as problematic, was found in GPAC 2.3-DEV-rev35-gbbca86917-master. This affects the function gf_m2ts_process_sdt of the file media_tools/mpegts.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been dis...
7.8CVSS
8.2AI Score
0.001EPSS
A vulnerability has been found in GPAC 2.3-DEV-rev35-gbbca86917-master and classified as problematic. This vulnerability affects the function gf_av1_reset_state of the file media_tools/av_parsers.c. The manipulation leads to double free. It is possible to launch the attack on the local host. The ex...
7.8CVSS
8AI Score
0.001EPSS
A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file filters/load_text.c. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit h...
7.8CVSS
8.2AI Score
0.001EPSS
7.8CVSS
6AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.001EPSS
Buffer overflow vulnerability in function avc_parse_slice in file media_tools/av_parsers.c. GPAC version 2.3-DEV-rev1-g4669ba229-master.
7.8CVSS
7.7AI Score
0.001EPSS
Integer overflow vulnerability in function Q_DecCoordOnUnitSphere file bifs/unquantize.c in GPAC version 2.2-rev0-gab012bbfb-master.
5.5CVSS
5.8AI Score
0.001EPSS
GPAC version 2.2-rev0-gab012bbfb-master was discovered to contain a memory leak in lsr_read_rare_full function.
7.8CVSS
7.6AI Score
0.001EPSS
5.5CVSS
5.7AI Score
0.0005EPSS
9.1CVSS
7.4AI Score
0.001EPSS
7.5CVSS
7AI Score
0.001EPSS
9.8CVSS
7AI Score
0.002EPSS
7.8CVSS
6AI Score
0.0004EPSS
7.1CVSS
5.5AI Score
0.0004EPSS
3.3CVSS
5.1AI Score
0.0004EPSS
7.1CVSS
6.3AI Score
0.001EPSS
GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the dump_isom_scene function at /mp4box/filedump.c.
5.5CVSS
5.4AI Score
0.0004EPSS
GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_dump_vrml_sffield function at /lib/libgpac.so.
5.5CVSS
5.4AI Score
0.0004EPSS
GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_isom_remove_user_data function at /lib/libgpac.so.
5.5CVSS
5.4AI Score
0.0004EPSS
GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the BM_ParseIndexValueReplace function at /lib/libgpac.so.
5.5CVSS
5.4AI Score
0.0004EPSS
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gf_bs_align function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted file.
5.5CVSS
5.3AI Score
0.0004EPSS
GPAC through 2.2.1 has a use-after-free vulnerability in the function gf_bifs_flush_command_list in bifs/memory_decoder.c.
5.5CVSS
5.4AI Score
0.0004EPSS