Vulnerabilities > CVE-2019-20168 - Use After Free vulnerability in Gpac 0.8.0/0.9.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
gpac
CWE-416

Summary

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.

Vulnerable Configurations

Part Description Count
Application
Gpac
2

Common Weakness Enumeration (CWE)