Vulnerabilities > CVE-2018-17236 - Use After Free vulnerability in Mp4V2 Project Mp4V2 2.1.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
mp4v2-project
CWE-416
NVD
Published: 2018-09-20
Updated: 2018-12-10

Summary

The function MP4Free() in mp4property.cpp in libmp4v2 2.1.0 internally calls free() on a invalid pointer, raising a SIGABRT signal.

Vulnerable Configurations

Part Description Count
Application
Mp4V2_Project
1

Common Weakness Enumeration (CWE)

References