Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-20630

Опубликовано: 24 мар. 2020
Источник: nvd
CVSS3: 5.5
CVSS2: 4.3
EPSS Низкий

Описание

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:gpac:gpac:*:*:*:*:*:*:*:*
Версия до 0.8.0 (исключая)

EPSS

Процентиль: 55%
0.00324
Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2019-20630

CVSS3: 5.5
ubuntu
почти 6 лет назад

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.

debian логотип

CVE-2019-20630

CVSS3: 5.5
debian
почти 6 лет назад

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...

github логотип

GHSA-v4pj-7x97-8hjm

github
больше 3 лет назад

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.

EPSS

Процентиль: 55%
0.00324
Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125