CVE-2022-3178Buffer Over-read in Gpac

CWE-126Buffer Over-readCWE-125Out-of-bounds Read4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 64.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Gpac GpacGpacDebian Gpac
Timeline
PublishedSep 12
Latest updateSep 13

Description

Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDgpac/gpac< 2.1.0-dev
CVEListV5gpac/gpac_gpacunspecified2.1.0-DEV
debiandebian/gpac

Patches

Patch: github.comPatch: huntr.devPatch: github.com

🔴Vulnerability Details

2
GHSA
GHSA-57pm-66vj-3hh7: Buffer Over-read in GitHub repository gpac/gpac prior to 22022-09-13
OSV
CVE-2022-3178: Buffer Over-read in GitHub repository gpac/gpac prior to 22022-09-12

📋Vendor Advisories

1
Debian
CVE-2022-3178: gpac - Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.2022
CVE-2022-3178 — Buffer Over-read in Gpac Gpac | cvebase