CVE-2023-46930
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-46930 is a vulnerability affecting GPAC 2.3-DEV-rev605-gfc9e29089-master. It involves a segmentation fault (SEGV) found in the gpac/MP4Box component, specifically in the function gf_isom_find_od_id_for_track located in media_odf.c at line 522. The issue was discovered during testing with AFL, and exploiting it could potentially lead to unintended application behavior or crashes. The vulnerability has not been assessed for public exploit availability or impact on systems. Users of GPAC 2.3-DEV-rev605-gfc9e29089-master are advised to apply the necessary patches or updates as soon as possible to mitigate this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- GPAC