Описание
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
Ссылки
- PatchThird Party Advisory
- ExploitThird Party Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gpac:gpac:1.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00271
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 5 лет назад
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
CVSS3: 5.5
debian
почти 5 лет назад
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allo ...
github
больше 3 лет назад
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
EPSS
Процентиль: 50%
0.00271
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-476