CVE-2022-24575Out-of-bounds Write in Gpac

CWE-787Out-of-bounds Write4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.3%
top 51.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
GpacDebian Gpac
Timeline
PublishedMar 14
Latest updateMar 15

Description

GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDgpac/gpac1.0.1
debiandebian/gpac

🔴Vulnerability Details

2
GHSA
GHSA-gf4h-8m54-4g94: GPAC 12022-03-15
OSV
CVE-2022-24575: GPAC 12022-03-14

📋Vendor Advisories

1
Debian
CVE-2022-24575: gpac - GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box.2022
CVE-2022-24575 — Out-of-bounds Write in Gpac | cvebase