Vulnerabilities > CVE-2021-40564 - NULL Pointer Dereference vulnerability in Gpac

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
gpac
CWE-476
NVD
Published: 2022-01-12
Updated: 2023-05-27

Summary

A Segmentation fault caused by null pointer dereference vulnerability eists in Gpac through 1.0.2 via the avc_parse_slice function in av_parsers.c when using mp4box, which causes a denial of service.

Vulnerable Configurations

Part Description Count
Application
Gpac
12

Common Weakness Enumeration (CWE)

References