Unchecked Return Value in gpac/gpac
CVE-2023-3013

7.1HIGH

Key Information:

Vendor: gpac
Status: gpac/gpac
Vendor: CVE Published:; 31 May 2023

What is CVE-2023-3013?

The GPAC media processing library contains an unchecked return value vulnerability that could potentially allow an attacker to exploit the functionality of the software. This issue arises from improper handling of return values in specific functions, leading to unexpected behavior or crashes. Users are recommended to update to GPAC version 2.2.2 or later to mitigate the risks associated with this vulnerability.

Affected Version(s)

gpac/gpac < 2.2.2

References

https://huntr.dev/bounties/52f95edc-cc03-4a9f-9bf8-74f641...

https://github.com/gpac/gpac/commit/78e539b43293829a14a32...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 31, 2023
Vulnerability Reserved
May 31, 2023