CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-4681 – NULL Pointer Dereference in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-4681
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3-DEV. • https://github.com/gpac/gpac/commit/4bac19ad854159b21ba70d8ab7c4e1cd1db8ea1c https://huntr.dev/bounties/d67c5619-ab36-41cc-93b7-04828e25f60e • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-4678 – Divide By Zero in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-4678
Divide By Zero in GitHub repository gpac/gpac prior to 2.3-DEV. • https://github.com/gpac/gpac/commit/4607052c482a51dbdacfe1ade10645c181d07b07 https://huntr.dev/bounties/688a4a01-8c18-469d-8cbe-a2e79e80c877 • CWE-369: Divide By Zero •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39562
https://notcve.org/view.php?id=CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gf_bs_align function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted file. • https://github.com/ChanStormstout/Pocs/blob/master/gpac_POC/id%3A000000%2Csig%3A06%2Csrc%3A003771%2Ctime%3A328254%2Cexecs%3A120473%2Cop%3Ahavoc%2Crep%3A8 https://github.com/gpac/gpac/issues/2537 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37174
https://notcve.org/view.php?id=CVE-2023-37174
GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the dump_isom_scene function at /mp4box/filedump.c. • https://github.com/gpac/gpac/issues/2505 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37765
https://notcve.org/view.php?id=CVE-2023-37765
GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_dump_vrml_sffield function at /lib/libgpac.so. • https://github.com/gpac/gpac/issues/2515 • CWE-787: Out-of-bounds Write •