Arbitrary Code Execution and Denial of Service Vulnerability in gpac version 2.3-DEV-rev588-g7edc40fee-master
CVE-2023-46427

Currently unrated

Key Information:

Vendor: gpac
Vendor: CVE Published:; 9 March 2024

What is CVE-2023-46427?

An issue was discovered in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers to execute arbitrary code, cause a denial of service (DoS), and obtain sensitive information via null pointer deference in gf_dash_setup_period component in media_tools/dash_client.c.

References

https://github.com/gpac/gpac/issues/2641

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 9, 2024
Vulnerability Reserved
Oct 23, 2023