CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-4681 – NULL Pointer Dereference in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-4681
31 Aug 2023 — NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3-DEV. • https://github.com/gpac/gpac/commit/4bac19ad854159b21ba70d8ab7c4e1cd1db8ea1c • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-4678 – Divide By Zero in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-4678
31 Aug 2023 — Divide By Zero in GitHub repository gpac/gpac prior to 2.3-DEV. • https://github.com/gpac/gpac/commit/4607052c482a51dbdacfe1ade10645c181d07b07 • CWE-369: Divide By Zero •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39562
https://notcve.org/view.php?id=CVE-2023-39562
28 Aug 2023 — GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gf_bs_align function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted file. • https://github.com/ChanStormstout/Pocs/blob/master/gpac_POC/id%3A000000%2Csig%3A06%2Csrc%3A003771%2Ctime%3A328254%2Cexecs%3A120473%2Cop%3Ahavoc%2Crep%3A8 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37174
https://notcve.org/view.php?id=CVE-2023-37174
11 Jul 2023 — GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the dump_isom_scene function at /mp4box/filedump.c. • https://github.com/gpac/gpac/issues/2505 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37767
https://notcve.org/view.php?id=CVE-2023-37767
11 Jul 2023 — GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the BM_ParseIndexValueReplace function at /lib/libgpac.so. • https://github.com/gpac/gpac/issues/2514 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37765
https://notcve.org/view.php?id=CVE-2023-37765
11 Jul 2023 — GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_dump_vrml_sffield function at /lib/libgpac.so. • https://github.com/gpac/gpac/issues/2515 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37766
https://notcve.org/view.php?id=CVE-2023-37766
11 Jul 2023 — GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_isom_remove_user_data function at /lib/libgpac.so. • https://github.com/gpac/gpac/issues/2516 • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3523 – Out-of-bounds Read in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-3523
06 Jul 2023 — Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2. • https://github.com/gpac/gpac/commit/64201a26476c12a7dbd7ffb5757743af6954db96 • CWE-125: Out-of-bounds Read •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3291 – Heap-based Buffer Overflow in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-3291
16 Jun 2023 — Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. Desbordamiento de búfer de pila en el repositorio gpac/gpac de GitHub en versiones anteriores a 2.2.2. Multiple security issues were discovered in the GPAC multimedia framework which could result in denial of service or the execution of arbitrary code. • https://github.com/gpac/gpac/commit/6a748ccc3f76ff10e3ae43014967ea4b0c088aaf • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3013 – Unchecked Return Value in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-3013
31 May 2023 — Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2. • https://github.com/gpac/gpac/commit/78e539b43293829a14a32e821f5267e3b7417594 • CWE-252: Unchecked Return Value •