CVE-2023-1448

GPAC mpegts.c gf_m2ts_process_sdt heap-based overflow

CVSS 5.3 MEDIUMEPSS 0.4%CWE-122

A vulnerability, which was classified as problematic, was found in GPAC 2.3-DEV-rev35-gbbca86917-master. This affects the function gf_m2ts_process_sdt of the file media_tools/mpegts.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-223293 was assigned to this vulnerability.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Produtos afetados

n/a · GPAC

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/gpac/gpac/issues/2388 https://github.com/xxy1126/Vuln/blob/main/gpac/3 https://vuldb.com/?ctiid.223293 https://vuldb.com/?id.223293