Vulnerabilities > Gpac > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-04-19 CVE-2021-30014 Integer Overflow or Wraparound vulnerability in Gpac 1.0.1
There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC 1.0.1 which results in a crash.
local
low complexity
gpac CWE-190
5.5
5.5
2021-04-19 CVE-2021-31262 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-476
5.5
5.5
2021-04-19 CVE-2021-31261 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Gpac 1.0.1
The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-119
5.5
5.5
2021-04-19 CVE-2021-31260 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-476
5.5
5.5
2021-04-19 CVE-2021-31259 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-476
5.5
5.5
2021-04-19 CVE-2021-31258 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-476
5.5
5.5
2021-04-19 CVE-2021-31257 NULL Pointer Dereference vulnerability in Gpac 1.0.1
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-476
5.5
5.5
2021-04-19 CVE-2021-31256 Memory Leak vulnerability in Gpac 1.0.1
Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.
local
low complexity
gpac CWE-401
5.5
5.5
2020-03-24 CVE-2019-20632 Release of Invalid Pointer or Reference vulnerability in Gpac
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box.
local
low complexity
gpac CWE-763
5.5
5.5
2020-03-24 CVE-2019-20631 Release of Invalid Pointer or Reference vulnerability in Gpac
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box.
local
low complexity
gpac CWE-763
5.5
5.5