Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-21862
HistoryAug 18, 2021 - 3:15 p.m.

CVE-2021-21862

2021-08-1815:15:07
Google
osv.dev
5
cve-2021-21862
gpac project
mpeg-4
memory corruption
parser
xtra
fourcc code
integer truncation vulnerabilities
software

AI Score

7.7

Confidence

High

EPSS

0.003

Percentile

67.8%

JSON

Multiple exploitable integer truncation vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer overflow that causes memory corruption The implementation of the parser used for the β€œXtra” FOURCC code is handled. An attacker can convince a user to open a video to trigger this vulnerability.

Related

cnvd 1
debiancve 1
cvelist 1
prion 1
ubuntucve 1
cve 1
nvd 1
talos 1
gentoo 1
nessus 1
cnvd
cnvd
GPAC input validation error vulnerability
2021-08-18 00:00:00
debiancve
debiancve
CVE-2021-21862
2021-08-18 15:15:07
cvelist
cvelist
CVE-2021-21862
2021-08-18 14:25:00
prion
prion
Heap overflow
2021-08-18 15:15:00
ubuntucve
ubuntucve
CVE-2021-21862
2021-08-18 00:00:00
cve
cve
CVE-2021-21862
2021-08-18 15:15:07
nvd
nvd
CVE-2021-21862
2021-08-18 15:15:07
talos
talos
GPAC Project Advanced Content MPEG-4 Decoding multiple integer truncation vulnerabilities
2021-08-16 00:00:00
gentoo
gentoo
GPAC: Multiple Vulnerabilities
2024-08-10 00:00:00
nessus
nessus
GLSA-202408-21 : GPAC: Multiple Vulnerabilities
2024-08-10 00:00:00

AI Score

7.7

Confidence

High

EPSS

0.003

Percentile

67.8%

JSON
Related for OSV:CVE-2021-21862
cnvd1debiancve1cvelist1prion1ubuntucve1cve1nvd1talos1gentoo1nessus1