Shaun Mirani

5 exploits Active since Aug 2025
CVE-2025-47183 WRITEUP MEDIUM WRITEUP
Gstreamer < 1.26.2 - Out-of-Bounds Read
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_tree function may read past the end of a heap buffer while parsing an MP4 file, leading to information disclosure.
CVSS 6.6
CVE-2025-47219 WRITEUP HIGH WRITEUP
Gstreamer < 1.26.2 - Out-of-Bounds Read
In GStreamer through 1.26.1, the isomp4 plugin's qtdemux_parse_trak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure.
CVSS 8.1
CVE-2025-47806 WRITEUP MEDIUM WRITEUP
Gstreamer < 1.26.2 - Stack Buffer Overflow
In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time function may write data past the bounds of a stack buffer, leading to a crash.
CVSS 5.6
CVE-2025-47807 WRITEUP MEDIUM WRITEUP
Gstreamer < 1.26.2 - NULL Pointer Dereference
In GStreamer through 1.26.1, the subparse plugin's subrip_unescape_formatting function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
CVSS 5.5
CVE-2025-47808 WRITEUP MEDIUM WRITEUP
Gstreamer < 1.26.2 - NULL Pointer Dereference
In GStreamer through 1.26.1, the subparse plugin's tmplayer_parse_line function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
CVSS 5.6