Описание
A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gpac:gpac:1.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00214
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 7.8
ubuntu
около 4 лет назад
A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file.
CVSS3: 7.8
debian
около 4 лет назад
A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in th ...
CVSS3: 7.8
github
около 4 лет назад
A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file.
EPSS
Процентиль: 44%
0.00214
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-787