CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1537 matches found

Debian CVE•added 2026/05/26 5:45 p.m.•5 views

CVE-2026-9567

A security flaw has been discovered in GPAC up to 2.4.0. Affected is the function MergeFragment of the file src/isomedia/isomintern.c of the component MP4Box. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit has been released to the publ...

4.8CVSS5.3AI score0.00014EPSS

Exploits0

ATTACKERKB•added 2026/05/08 1:15 a.m.•2 views

CVE-2026-8124

A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...

4.8CVSS5.3AI score0.00022EPSS

Exploits1References6

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux - уязвимость в ffmpeg

FFmpeg n7.0 is affected by a Double Free via the rkmppretrieveframe function within libavcodec/rkmppdec.c...

9.8CVSS7AI score0.00227EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в ffmpeg

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodecalloccontext3 at options.c...

6.5CVSS6.9AI score0.0034EPSS

Exploits1References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в ffmpeg5

Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service DoS via the afdialoguenhance.c:261:5 in the destereo component...

8CVSS7.6AI score0.00025EPSS

Exploits1References2

FreeBSD•added 2026/04/07 12:0 a.m.•8 views

chromium -- security fixes

Chrome Releases reports: This update includes multiple security fixes: Critical: CVE-2026-5858: Heap buffer overflow in WebML. CVE-2026-5859: Integer overflow in WebML. High: CVE-2026-5860: Use after free in WebRTC. CVE-2026-5861: Use after free in V8. CVE-2026-5862: Inappropriate implementation ...

9.8CVSS7.5AI score0.00161EPSS

Exploits0References1

Vulnrichment•added 2026/03/15 6:32 p.m.•3 views

CVE-2026-4185 GPAC MP4Box swf_parse.c swf_def_bits_jpeg stack-based overflow

A vulnerability was found in GPAC up to 2.5-DEV-rev2167-gcc9d617c0-master. This vulnerability affects the function swfdefbitsjpeg of the file src/scenemanager/swfparse.c of the component MP4Box. The manipulation of the argument szName results in stack-based buffer overflow. It is possible to laun...

6.5CVSS6.2AI score0.00096EPSS

Exploits0References7

Fedora•added 2026/03/14 12:17 a.m.•3 views

[SECURITY] Fedora 44 Update: gstreamer1-plugins-bad-free-1.28.1-1.fc44

GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...

5.9AI score

Exploits0

Fedora•added 2026/03/14 12:17 a.m.•3 views

[SECURITY] Fedora 44 Update: gstreamer1-1.28.1-1.fc44

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

5.8AI score

Exploits0

OSV•added 2026/03/12 9:15 a.m.•2 views

DEBIAN-CVE-2026-4015

A weakness has been identified in GPAC 26.03-DEV. Affected is the function txtinprocesstexml of the file src/filters/loadtext.c of the component TeXML File Parser. Executing a manipulation can lead to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit...

5.3CVSS5.7AI score0.00019EPSS

Exploits0References1

RedhatCVE•added 2026/01/27 3:20 a.m.•5 views

CVE-2026-1416

A security flaw has been discovered in GPAC up to 2.4.0. Affected by this vulnerability is the function DumpMovieInfo of the file applications/mp4box/filedump.c. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released...

4.8CVSS5.5AI score0.00015EPSS

Exploits1References1

Cvelist•added 2026/01/26 3:32 a.m.•32 views

CVE-2026-1417 GPAC filedump.c dump_isom_rtp null pointer dereference

A weakness has been identified in GPAC up to 2.4.0. Affected by this issue is the function dumpisomrtp of the file applications/mp4box/filedump.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been made available to the public and coul...

4.8CVSS0.00015EPSS

Exploits1References7

OSV•added 2026/01/15 6:16 p.m.•0 views

UBUNTU-CVE-2025-70299

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

6.5CVSS5.8AI score0.00031EPSS

Exploits1References3

RedHat Linux•added 2025/10/21 3:29 a.m.•4 views

Moderate: Red Hat Security Advisory: Automotive bug fix and enhancement update

An update for gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server is now available for Red Hat In-Vehicle-OS version 1.0.0. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System...

8.8CVSS7.1AI score0.03631EPSS

Exploits0References5