Lucene search
+L

34 matches found

OSV
OSV
added 2026/07/06 3:16 a.m.3 views

DEBIAN-CVE-2026-14790

A flaw has been found in GPAC 26.02.0. This affects the function nhmldumpsendframe of the file src/filters/writenhml.c of the component Media File Handler. Executing a manipulation can lead to null pointer dereference. The attack requires local access. The exploit has been published and may be...

4.8CVSS5.5AI score0.00115EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/06 2:15 a.m.40 views

CVE-2026-14790 GPAC Media File write_nhml.c nhmldump_send_frame null pointer dereference

A flaw has been found in GPAC 26.02.0. This affects the function nhmldumpsendframe of the file src/filters/writenhml.c of the component Media File Handler. Executing a manipulation can lead to null pointer dereference. The attack requires local access. The exploit has been published and may be...

4.8CVSS0.00115EPSS
Exploits0References7
OSV
OSV
added 2026/07/06 2:15 a.m.3 views

CVE-2026-14790 GPAC Media File write_nhml.c nhmldump_send_frame null pointer dereference

A flaw has been found in GPAC 26.02.0. This affects the function nhmldumpsendframe of the file src/filters/writenhml.c of the component Media File Handler. Executing a manipulation can lead to null pointer dereference. The attack requires local access. The exploit has been published and may be...

4.8CVSS5.4AI score0.00115EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.11 views

CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS6AI score0.00165EPSS
Exploits1References1
NVD
NVD
added 2026/03/20 9:17 p.m.6 views

CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

7.8CVSS0.00165EPSS
Exploits1References2
OSV
OSV
added 2026/03/20 9:17 p.m.10 views

DEBIAN-CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

7.8CVSS5.7AI score0.00165EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/20 9:17 p.m.5 views

CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

7.8CVSS6AI score0.00165EPSS
Exploits1References3
OSV
OSV
added 2026/03/20 9:17 p.m.16 views

UBUNTU-CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

7.8CVSS6AI score0.00165EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/20 8:7 p.m.6 views

EUVD-2026-13782

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS6AI score0.00165EPSS
Exploits1References2
CVE
CVE
added 2026/03/20 8:7 p.m.14 views

CVE-2026-33144

GPAC MP4Box has a heap-based out-of-bounds write vulnerability in the gf_xml_parse_bit_sequence_bs function (utils/xml_bin_custom.c) when processing crafted NHML files containing BitSequence () elements. The issue exists prior to commit 86b0e36 and can be triggered by a specially crafted NHML fil...

7.8CVSS6AI score0.00165EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/20 8:7 p.m.23 views

CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS6AI score0.00165EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/20 8:7 p.m.3 views

CVE-2026-33144 GPAC MP4Box Heap Buffer Overflow Write in gf_xml_parse_bit_sequence_bs (NHML BS Parsing)

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS6AI score0.00165EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/20 8:7 p.m.28 views

CVE-2026-33144 GPAC MP4Box Heap Buffer Overflow Write in gf_xml_parse_bit_sequence_bs (NHML BS Parsing)

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS0.00165EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/03/20 8:7 p.m.5 views

CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

7.8CVSS5.7AI score0.00165EPSS
Exploits1
OSV
OSV
added 2026/03/20 8:7 p.m.6 views

CVE-2026-33144 GPAC MP4Box Heap Buffer Overflow Write in gf_xml_parse_bit_sequence_bs (NHML BS Parsing)

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS6.1AI score0.00165EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.9 views

GPAC MP4Box 安全漏洞

GPAC MP4Box is a multimedia packager. It is primarily used for processing ISOBMF files such as MP4 and 3GP, but it can also be used for importing/exporting media from container files like AVI, MPG, MKV, and MPEG-2 TS. Previous versions of GPAC MP4Box, including version 86b0e36, had a security...

7.8CVSS5.9AI score0.00165EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.11 views

PT-2026-26668

Name of the Vulnerable Software and Affected Versions GPAC versions prior to commit 86b0e36 Description GPAC is an open-source multimedia framework. A heap-based buffer overflow write issue exists in GPAC MP4Box within the gf xml parse bit sequence bs function in utils/xml bin custom.c when...

7.8CVSS6.2AI score0.00165EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-27821

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in...

8.7CVSS6AI score0.00272EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/27 4:13 a.m.7 views

CVE-2026-27821

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

8.7CVSS5.6AI score0.00272EPSS
Exploits1References1
NVD
NVD
added 2026/02/26 12:16 a.m.8 views

CVE-2026-27821

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

8.7CVSS0.00272EPSS
Exploits1References2
Rows per page
Query Builder