CVE-2023-46932

gpac/gpac

on github

Published

December 9, 2023

Severity

CVSS v3:

9.8 CRITICAL

CVSS v2:

N/A

Description

Heap Buffer Overflow vulnerability in GPAC version 2.3-DEV-rev617-g671976fcc-master, allows attackers to execute arbitrary code and cause a denial of service (DoS) via str2ulong class in src/media_tools/avilib.c in gpac/MP4Box.

References

https://github.com/gpac/gpac/issues/2669

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:gpac:gpac:2.3-dev-rev617-g671976fcc-master:::::::*	n/a	n/a	2.3-dev-rev617-g671976fcc-master

External Links

NVD - CVE-2023-46932