Vulnerabilities > CVE-2020-35980 - Use After Free vulnerability in Gpac 0.8.0/1.0.1

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
gpac
CWE-416

Summary

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.

Vulnerable Configurations

Part Description Count
Application
Gpac
2

Common Weakness Enumeration (CWE)