GPAC version 2.3-DEV-rev602-ged8424300-master in MP4Box contains a memory leak in NewSFDouble scenegraph/vrml_tools.c:300. This vulnerability may lead to a denial of service.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Gpac
  • Gpac

Configuration 1 [-]

cpe:2.3:a:gpac:gpac:*:*:*:*:*:*:*:*
References
Link Resource
https://gist.github.com/ReturnHere/d0899bb03b8f5e8fae118f2b76888486 Exploit Third Party Advisory
https://github.com/gpac/gpac/issues/2658 Exploit Issue Tracking Patch Third Party Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-07T00:00:00

Updated: 2023-12-07T17:15:47.981961

Reserved: 2023-10-30T00:00:00

Link: CVE-2023-46871

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-12-07T18:15:08.030

Modified: 2023-12-12T20:19:53.150

Link: CVE-2023-46871

JSON object: View

cve-icon Redhat Information

No data.

CWE