Vulnerabilities > CVE-2018-17236 - Use After Free vulnerability in Mp4V2 Project Mp4V2 2.1.0

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
mp4v2-project
CWE-416
NVD
Published: 2018-09-20
Updated: 2024-11-21

Summary

The function MP4Free() in mp4property.cpp in libmp4v2 2.1.0 internally calls free() on a invalid pointer, raising a SIGABRT signal.

Vulnerable Configurations

Part Description Count
Application
Mp4V2_Project
1

Common Weakness Enumeration (CWE)

References