Lucene search

[email protected]NVD:CVE-2023-46931

HistoryNov 01, 2023 - 2:15 p.m.

CVE-2023-46931

2023-11-0114:15:38

CWE-787

[email protected]

web.nvd.nist.gov

gpac 2.3-dev-rev605-gfc9e29089-master

heap-buffer-overflow

ffdmx_parse_side_data

afltest

gpac

filters

ff_dmx.c

mp4box

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

Percentile

12.7%

JSON

GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmx_parse_side_data /afltest/gpac/src/filters/ff_dmx.c:202:14 in gpac/MP4Box.

Affected configurations

Nvd

Node

gpacgpacMatch2.3-dev-rev605-gfc9e29089-master

VendorProductVersionCPE
gpacgpac2.3-dev-rev605-gfc9e29089-mastercpe:2.3:a:gpac:gpac:2.3-dev-rev605-gfc9e29089-master:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gpac	gpac	2.3-dev-rev605-gfc9e29089-master	cpe:2.3:a:gpac:gpac:2.3-dev-rev605-gfc9e29089-master:::::::*

References

github.com/gpac/gpac/commit/671976fccc971b3dff8d3dcf6ebd600472ca64bf.

github.com/gpac/gpac/issues/2664

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

Percentile

12.7%

JSON

Related for NVD:CVE-2023-46931

vulnrichment1 ubuntucve1 debiancve1 prion1 cvelist1 cve1