Mark E. Davis

1 exploit Active since May 2022
CVE-2022-30976 WRITEUP HIGH WRITEUP
GPAC 2.0.0 - Heap-Based Buffer Over-Read via gf_utf8_wcslen Function
GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box.
CVSS 7.1