Vulnerabilities > CVE-2019-20164 - NULL Pointer Dereference vulnerability in Gpac 0.8.0/0.9.0

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
gpac
CWE-476

Summary

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_isom_box_del() in isomedia/box_funcs.c.

Vulnerable Configurations

Part Description Count
Application
Gpac
2

Common Weakness Enumeration (CWE)