CVE-2023-46932 - OpenCVE

Heap Buffer Overflow vulnerability in GPAC version 2.3-DEV-rev617-g671976fcc-master, allows attackers to execute arbitrary code and cause a denial of service (DoS) via str2ulong class in src/media_tools/avilib.c in gpac/MP4Box.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Gpac	Gpac

Configuration 1 [-]

cpe:2.3:a:gpac:gpac:2.3-dev-rev617-g671976fcc-master:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/gpac/gpac/issues/2669	Exploit

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-09T00:00:00

Updated: 2023-12-09T06:50:00.932753

Reserved: 2023-10-30T00:00:00

Link: CVE-2023-46932

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-12-09T07:15:07.663

Modified: 2023-12-12T22:32:26.197

Link: CVE-2023-46932

JSON object: View

Redhat Information

No data.

CWE

CWE-787