Vulnerabilities > Gpac

DATE CVE VULNERABILITY TITLE RISK
2021-09-13 CVE-2021-33364 Memory Leak vulnerability in Gpac 1.0.1
Memory leak in the def_parent_box_new function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.
local
low complexity
gpac CWE-401
5.5
5.5
2021-09-13 CVE-2021-33366 Memory Leak vulnerability in Gpac 1.0.1
Memory leak in the gf_isom_oinf_read_entry function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.
local
low complexity
gpac CWE-401
5.5
5.5
2021-09-13 CVE-2021-32132 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
network
gpac CWE-476
4.3
4.3
2021-09-13 CVE-2021-32135 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The trak_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
network
gpac CWE-476
4.3
4.3
2021-09-13 CVE-2021-32134 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
network
gpac CWE-476
4.3
4.3
2021-09-13 CVE-2021-32137 Out-of-bounds Write vulnerability in Gpac 1.0.1
Heap buffer overflow in the URL_GetProtocolType function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.
network
gpac CWE-787
4.3
4.3
2021-09-13 CVE-2021-32136 Out-of-bounds Write vulnerability in Gpac 1.0.1
Heap buffer overflow in the print_udta function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.
network
gpac CWE-787
6.8
6.8
2021-09-07 CVE-2020-19750 Out-of-bounds Read vulnerability in Gpac 0.8.0
An issue was discovered in gpac 0.8.0.
network
low complexity
gpac CWE-125
5.0
5.0
2021-09-07 CVE-2020-19751 Out-of-bounds Read vulnerability in Gpac 0.8.0
An issue was discovered in gpac 0.8.0.
network
low complexity
gpac CWE-125
6.4
6.4
2021-08-25 CVE-2021-21834 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
gpac debian CWE-119
6.8
6.8