CVE-2020-35980

Опубликовано: 21 апр. 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.

Ссылки

https://github.com/gpac/gpac/commit/5aba27604d957e960d8069d85ccaf868f8a7b07a
Patch
Third Party Advisory
https://github.com/gpac/gpac/issues/1661
Exploit
Third Party Advisory
https://www.debian.org/security/2023/dsa-5411
https://github.com/gpac/gpac/commit/5aba27604d957e960d8069d85ccaf868f8a7b07a
Patch
Third Party Advisory
https://github.com/gpac/gpac/issues/1661
Exploit
Third Party Advisory
https://www.debian.org/security/2023/dsa-5411

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gpac:gpac:0.8.0:*:*:*:*:*:*:*

cpe:2.3:a:gpac:gpac:1.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 33%

0.00133

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-416

Связанные уязвимости

CVE-2020-35980

CVSS3: 7.8

ubuntu

почти 5 лет назад

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.

CVE-2020-35980

CVSS3: 7.8

debian

почти 5 лет назад

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a us ...

GHSA-842w-qv52-hpw3

CVSS3: 7.8

github

больше 3 лет назад

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.

EPSS

Процентиль: 33%

0.00133

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-416