Memory Leak Vulnerability in GPAC Media Tools by GPAC
CVE-2023-48090

7.1HIGH

Key Information:

Vendor: Gpac
Status: Gpac
Vendor: CVE Published:; 20 November 2023

What is CVE-2023-48090?

The GPAC Media Tools, specifically version 2.3-DEV-rev617-g671976fcc-master, is impacted by a memory leak issue in the extract_attributes function located in m3u8.c. This vulnerability may lead to inefficient memory utilization, potentially causing performance degradation over time. Users of the affected version should monitor their systems for unusual behavior while executing media processing tasks.

References

https://github.com/gpac/gpac/issues/2680

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2023
Vulnerability Reserved
Nov 13, 2023

Gpac

What is CVE-2023-48090?

References

CVSS V3.1

Timeline