CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4671 matches found

Cvelist•added 2021/08/18 12:32 p.m.•19 views

CVE-2021-21846

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input in “stsz” decoder can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffe...

8.8CVSS9.1AI score0.00509EPSS

Exploits1References3

Cvelist•added 2021/08/18 12:31 p.m.•18 views

CVE-2021-21845

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input in “stsc” decoder can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffe...

8.8CVSS9.1AI score0.00509EPSS

Exploits1References3

Cvelist•added 2021/08/18 12:25 p.m.•18 views

CVE-2021-21847

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input in “stts” decoder can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffe...

8.8CVSS9.1AI score0.00258EPSS

Exploits1References3

Cvelist•added 2021/08/18 12:0 a.m.•16 views

CVE-2021-21852

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input at “stss” decoder can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffe...

8.8CVSS9.1AI score0.00528EPSS

Exploits1References3

CNVD•added 2021/08/18 12:0 a.m.•17 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-68450)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.The MPEG-4 decoding feature of GPAC Project on Advanced Content library 1.0.1 suffers from an integer...

6.8CVSS5.2AI score0.00609EPSS

Exploits1Affected Software1

CNVD•added 2021/08/18 12:0 a.m.•21 views

GPAC can exploit integer truncation vulnerability

A security vulnerability exists in the MPEG-4 decoding functionality of the GPAC project on Advanced Content library v1.0.1, an open source multimedia framework. The vulnerability stems from the handling of the "hdlr" FOURCC code, where a carefully constructed MPEG-4 input could lead to incorrect...

8.8CVSS1.7AI score0.00418EPSS

Exploits1References1

CNVD•added 2021/08/18 12:0 a.m.•11 views

GPAC input validation error vulnerability

GPAC is an open source multimedia framework. a security vulnerability exists in the MPEG-4 decoding feature of GPAC on Advanced Content library v1.0.1. An attacker could exploit the vulnerability to cause incorrect memory allocation via a carefully constructed MPEG-4 input, which could lead to a...

8.8CVSS2.9AI score0.00443EPSS

Exploits1References1

Positive Technologies•added 2021/08/18 12:0 a.m.•1 views

PT-2021-6599 · Unknown +1 · Gpac Project On Advanced Content Library +1

Name of the Vulnerable Software and Affected Versions: GPAC Project on Advanced Content library version 1.0.1 Description: The issue is related to the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library. A specially crafted MPEG-4 input at the "stss" decoder can cause an...

9.8CVSS7.6AI score0.01461EPSS

Exploits98References248

OSV•added 2021/08/16 8:15 p.m.•14 views

CVE-2021-21861

An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. When processing the 'hdlr' FOURCC code, a specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer...

8.8CVSS7AI score

Exploits0References2

NVD•added 2021/08/16 8:15 p.m.•12 views

CVE-2021-21861

8.8CVSS0.00418EPSS

Exploits1References2

OSV•added 2021/08/16 8:15 p.m.•15 views

CVE-2021-21859

An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. The striboxread function is used when processing atoms using the 'stri' FOURCC code. An attacker can convince a user to open a video to trigger...

8.8CVSS6.6AI score

Exploits0References2

NVD•added 2021/08/16 8:15 p.m.•13 views

CVE-2021-21859

8.8CVSS0.00609EPSS

Exploits1References2

OSV•added 2021/08/16 8:15 p.m.•1 views

DEBIAN-CVE-2021-21860

An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer overflow that causes memory corruption...

8.8CVSS8.3AI score0.00457EPSS

Exploits1References1

NVD•added 2021/08/16 8:15 p.m.•16 views

CVE-2021-21860

8.8CVSS0.00457EPSS

Exploits1References2

OSV•added 2021/08/16 8:15 p.m.•1 views

DEBIAN-CVE-2021-21861

8.8CVSS8.9AI score0.00418EPSS

Exploits1References1

OSV•added 2021/08/16 8:15 p.m.•0 views

UBUNTU-CVE-2021-21860