CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-48011
https://notcve.org/view.php?id=CVE-2023-48011
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a heap-use-after-free via the flush_ref_samples function at /gpac/src/isomedia/movie_fragments.c. Se descubrió que GPAC v2.3-DEV-rev566-g50c2ab06f-master contiene un heap-use-after-free a través de la función flush_ref_samples en /gpac/src/isomedia/movie_fragments.c. • https://github.com/gpac/gpac/commit/c70f49dda4946d6db6aa55588f6a756b76bd84ea https://github.com/gpac/gpac/issues/2611 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-48013
https://notcve.org/view.php?id=CVE-2023-48013
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a double free via the gf_filterpacket_del function at /gpac/src/filter_core/filter.c. Se descubrió que GPAC v2.3-DEV-rev566-g50c2ab06f-master contiene un doble libre a través de la función gf_filterpacket_del en /gpac/src/filter_core/filter.c. • https://github.com/gpac/gpac/commit/cd8a95c1efb8f5bfc950b86c2ef77b4c76f6b893 https://github.com/gpac/gpac/issues/2612 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-48014
https://notcve.org/view.php?id=CVE-2023-48014
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a stack overflow via the hevc_parse_vps_extension function at /media_tools/av_parsers.c. Se descubrió que GPAC v2.3-DEV-rev566-g50c2ab06f-master contenía un desbordamiento de pila a través de la función hevc_parse_vps_extension en /media_tools/av_parsers.c. • https://github.com/gpac/gpac/commit/66abf0887c89c29a484d9e65e70882794e9e3a1b https://github.com/gpac/gpac/issues/2613 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-47384
https://notcve.org/view.php?id=CVE-2023-47384
MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master was discovered to contain a memory leak in the function gf_isom_add_chapter at /isomedia/isom_write.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file. Se descubrió que MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master contenía una pérdida de memoria en la función gf_isom_add_chapter en /isomedia/isom_write.c. Esta vulnerabilidad permite a los atacantes provocar una Denegación de Servicio (DoS) a través de un archivo MP4 manipulado. • https://github.com/gpac/gpac/issues/2672 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5998 – Out-of-bounds Read in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-5998
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3.0-DEV. Lectura fuera de los límites en el repositorio de GitHub gpac/gpac anterior a 2.3.0-DEV. • https://github.com/gpac/gpac/commit/db74835944548fc3bdf03121b0e012373bdebb3e https://huntr.com/bounties/ea02a231-b688-422b-a881-ef415bcf6113 • CWE-125: Out-of-bounds Read •