Lucene search
Veracode Vulnerability DatabaseVERACODE:41320HistoryJul 17, 2023 - 12:15 p.m.
Denial Of Service (DoS)
2023-07-1712:15:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
denial of service
libgpac.so
mp4box/filedump.c
software vulnerability
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
12.7%
libgpac.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to a segmentation fault in the dump_isom_scene function of mp4box/filedump.c, which allows an attacker to cause an application crash via a crafted input.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libgpac.so | le | 10.1.0 | |
| libgpac.so | le | 10.1.0 |
Related
cvelist
cvelist
CVE-2023-37174
2023-07-11 00:00:00
cve
cve
CVE-2023-37174
2023-07-11 23:15:09
ubuntucve
ubuntucve
CVE-2023-37174
2023-07-11 00:00:00
nvd
nvd
CVE-2023-37174
2023-07-11 23:15:09
debiancve
debiancve
CVE-2023-37174
2023-07-11 23:15:09
osv
osv
CVE-2023-37174
2023-07-11 23:15:09
prion
prion
Design/Logic Flaw
2023-07-11 23:15:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
12.7%
Related for VERACODE:41320