CVE-2021-31262

CVE-2021-31262

EPSS 0.9%

The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/gpac/gpac/commit/b2eab95e07cb5819375a50358d4806a8813b6e50 https://github.com/gpac/gpac/issues/1738