Vulnerabilities > Gpac > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-01-08 CVE-2024-0321 Out-of-bounds Write vulnerability in Gpac
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV.
network
low complexity
gpac CWE-787
critical
 9.8
9.8
2024-01-08 CVE-2024-0322 Unspecified vulnerability in Gpac
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV.
network
low complexity
gpac
critical
 9.1
9.1
2023-12-09 CVE-2023-46932 Out-of-bounds Write vulnerability in Gpac 2.3Devrev617G671976Fccmaster
Heap Buffer Overflow vulnerability in GPAC version 2.3-DEV-rev617-g671976fcc-master, allows attackers to execute arbitrary code and cause a denial of service (DoS) via str2ulong class in src/media_tools/avilib.c in gpac/MP4Box.
network
low complexity
gpac CWE-787
critical
 9.8
9.8
2023-05-22 CVE-2023-2838 Unspecified vulnerability in Gpac
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2.
network
low complexity
gpac
critical
 9.1
9.1
2023-05-22 CVE-2023-2840 Unspecified vulnerability in Gpac
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2.
network
low complexity
gpac
critical
 9.8
9.8
2022-08-17 CVE-2022-36190 Use After Free vulnerability in Gpac
GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get.
network
low complexity
gpac CWE-416
critical
 9.8
9.8
2022-05-18 CVE-2022-1795 Unspecified vulnerability in Gpac
Use After Free in GitHub repository gpac/gpac prior to v2.1.0-DEV.
network
low complexity
gpac
critical
 9.8
9.8
2021-09-07 CVE-2020-19751 Out-of-bounds Read vulnerability in Gpac 0.8.0
An issue was discovered in gpac 0.8.0.
network
low complexity
gpac CWE-125
critical
 9.1
9.1
2021-04-14 CVE-2021-28300 NULL Pointer Dereference vulnerability in Gpac 0.5.2
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5.2 allows attackers to execute arbitrary code or cause a Denial-of-Service (DoS) by uploading a malicious MP4 file.
network
low complexity
gpac CWE-476
critical
 9.8
9.8
2020-04-05 CVE-2020-11558 Use After Free vulnerability in Gpac 0.8.0
An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box.
network
low complexity
gpac CWE-416
critical
 9.8
9.8