Floating Point Exception Vulnerability in GPAC MP4Box by GPAC
CVE-2025-55642

6.5MEDIUM

Key Information:

Vendor: GPAC
Status: MP4Box
Vendor: CVE Published:; 15 June 2026

What is CVE-2025-55642?

A vulnerability has been identified in GPAC MP4Box v2.4, specifically within the avidmx_process function in the isomedia/isom_write.c file. This issue can lead to unexpected behavior or crashes, potentially allowing an attacker to manipulate the application's execution. Users are advised to assess their use of the affected version and apply necessary mitigations.

References

https://infosec.exchange/@sigdevel/116736787186993437

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 15, 2026
Vulnerability Reserved
Aug 13, 2025

CVE-2025-55642 Data

JSON