Shodan
Vulnerabilities
Vulnerable Software
Gpac:  >> Gpac  >> 0.9.0  Security Vulnerabilities
CVE-2020-23931
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
CVSS Score
7.1
EPSS Score
0.003
Published
2021-04-21
CVE-2020-23932
An issue was discovered in gpac before 1.0.1. A NULL pointer dereference exists in the function dump_isom_sdp located in filedump.c. It allows an attacker to cause Denial of Service.
CVSS Score
5.5
EPSS Score
0.002
Published
2021-04-21
CVE-2021-30014
There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC from v0.9.0-preview to 1.0.1 which results in a crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-04-19
CVE-2021-30022
There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in GPAC from 0.5.2 to 1.0.1. pps_id may be a negative number, so it will not return. However, avc->pps only has 255 unit, so there is an overflow, which results a crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-04-19
CVE-2019-20168
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2019-12-31
CVE-2019-20169
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trak_Read() in isomedia/box_code_base.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2019-12-31
CVE-2019-20170
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is an invalid pointer dereference in the function GF_IPMPX_AUTH_Delete() in odf/ipmpx_code.c.
CVSS Score
5.5
EPSS Score
0.005
Published
2019-12-31
CVE-2019-20171
An issue was discovered in GPAC version 0.5.2 and 0.9.0-development-20191109. There are memory leaks in metx_New in isomedia/box_code_base.c and abst_Read in isomedia/box_code_adobe.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2019-12-31
CVE-2019-20159
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinf_New() in isomedia/box_code_base.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2019-12-31
CVE-2019-20160
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a stack-based buffer overflow in the function av1_parse_tile_group() in media_tools/av_parsers.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2019-12-31


Products
Pricing
Contact Us

Shodan ® - All rights reserved