CVE-2021-40942

Опубликовано: 27 июн. 2022

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function filter_parse_dyn_args function in filter_core/filter.c:1454, as demonstrated by GPAC. This can cause a denial of service (DOS).

Ссылки

https://github.com/gpac/gpac/issues/1908
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/gpac/gpac/issues/1908
Exploit
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gpac:gpac:1.1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00279

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2021-40942

CVSS3: 5.5

ubuntu

больше 3 лет назад

In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function filter_parse_dyn_args function in filter_core/filter.c:1454, as demonstrated by GPAC. This can cause a denial of service (DOS).

CVE-2021-40942

CVSS3: 5.5

debian

больше 3 лет назад

In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function ...

GHSA-2x9j-5g97-m4vf

CVSS3: 5.5

github

больше 3 лет назад

In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function filter_parse_dyn_args function in filter_core/filter.c:1454, as demonstrated by GPAC. This can cause a denial of service (DOS).

EPSS

Процентиль: 51%

0.00279

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-787