CVE-2023-46927

Summary

CVE-2023-46927 refers to a heap buffer overflow vulnerability identified in GPAC 2.3-DEV-rev605-gfc9e29089-master. This issue is located in the 'gpac/src/isomedia/isom_write.c:3403:3' section of the file 'gpac/MP4Box'. The 'gf_isom_use_compact_size' function in this location contains the flaw, which could potentially allow an attacker to inject and execute malicious code by overflowing the heap buffer. This vulnerability could pose a significant risk to systems utilizing the affected version of GPAC or MP4Box, making it crucial for users to apply the necessary patches or updates promptly to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.