Vulnerabilities > Gpac

DATE CVE VULNERABILITY TITLE RISK
2019-12-31 CVE-2019-20165 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
local
low complexity
gpac debian CWE-476
5.5
5.5
2019-12-31 CVE-2019-20164 NULL Pointer Dereference vulnerability in Gpac 0.8.0/0.9.0
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
network
gpac CWE-476
4.3
4.3
2019-12-31 CVE-2019-20163 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
local
low complexity
gpac debian CWE-476
5.5
5.5
2019-12-31 CVE-2019-20162 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
local
low complexity
gpac debian CWE-787
5.5
5.5
2019-12-31 CVE-2019-20161 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
local
low complexity
gpac debian CWE-787
5.5
5.5
2019-12-31 CVE-2019-20160 Out-of-bounds Write vulnerability in Gpac 0.8.0/0.9.0
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
network
gpac CWE-787
4.3
4.3
2019-12-31 CVE-2019-20159 Missing Release of Resource after Effective Lifetime vulnerability in Gpac 0.8.0/0.9.0
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109.
network
gpac CWE-772
4.3
4.3
2019-09-16 CVE-2018-21017 Memory Leak vulnerability in Gpac 0.7.1
GPAC 0.7.1 has a memory leak in dinf_Read in isomedia/box_code_base.c.
network
gpac CWE-401
4.3
4.3
2019-09-16 CVE-2018-21016 Out-of-bounds Read vulnerability in multiple products
audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
network
low complexity
gpac debian CWE-125
6.5
6.5
2019-09-16 CVE-2018-21015 NULL Pointer Dereference vulnerability in multiple products
AVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
network
low complexity
gpac debian CWE-476
6.5
6.5