CVE-2020-22352

gpac/gpac

on github

Published

August 4, 2021

Severity

CVSS v3:

5.5 MEDIUM

CVSS v2:

4.3 MEDIUM

Description

The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

References

https://github.com/gpac/gpac/issues/1423

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:gpac:gpac:0.8.0:::::::*	n/a	n/a	0.8.0

External Links

NVD - CVE-2020-22352