Lucene search
Veracode Vulnerability DatabaseVERACODE:26809HistorySep 21, 2020 - 6:19 a.m.
Arbitrary Code Execution
2020-09-2106:19:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
44.8%
GPAC is vulnerable to arbitrary code execution. A buffer overflow vulnerability occurs in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted filenames. This allows an attacker to execute arbitrary code on the host OS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gpac:xenial | eq | 0.5.2 | |
| gpac:xenial | eq | 0.5.2 |
Related
nvd
nvd
CVE-2018-20762
2019-02-06 23:29:00
ubuntucve
ubuntucve
CVE-2018-20762
2019-02-06 00:00:00
prion
prion
Buffer overflow
2019-02-06 23:29:00
cvelist
cvelist
CVE-2018-20762
2019-02-06 23:00:00
debiancve
debiancve
CVE-2018-20762
2019-02-06 23:29:00
cve
cve
CVE-2018-20762
2019-02-06 23:29:00
osv
osv
CVE-2018-20762
2019-02-06 23:29:00
gpac - security update
2019-02-27 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1693-1)
2019-02-27 00:00:00
Ubuntu: Security Advisory (USN-3926-1)
2019-04-03 00:00:00
Mageia: Security Advisory (MGASA-2019-0146)
2022-01-28 00:00:00
nessus
nessus
Debian DLA-1693-1 : gpac security update
2019-02-28 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : GPAC vulnerabilities (USN-3926-1)
2019-04-01 00:00:00
debian
debian
[SECURITY] [DLA 1693-1] gpac security update
2019-02-27 19:31:44
ubuntu
ubuntu
GPAC vulnerabilities
2019-03-29 00:00:00
mageia
mageia
Updated gpac packages fix security vulnerability
2019-04-11 01:07:23