Writeup Exploits

60,504 exploits tracked across all sources.

Sort: Activity Stars
CVE-2021-30020 WRITEUP MEDIUM
GPAC 1.0.1 - Heap Overflow via Crafted File in gf_hevc_read_pps_bs_internal
In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps->num_tile_columns may be larger than sizeof(pps->column_width), which results in a heap overflow in the loop.
CVSS 5.5
CVE-2021-30019 WRITEUP MEDIUM
GPAC 1.0.1 - Heap Overflow via ADTS Frame Size Mismatch
In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0.1, a crafted file may cause ctx->hdr.frame_size to be smaller than ctx->hdr.hdr_size, resulting in size to be a negative number and a heap overflow in the memcpy.
CVSS 5.5
CVE-2021-30015 WRITEUP MEDIUM
GPAC 1.0.1 - Null Pointer Dereference in gf_filter_pck_new_alloc_internal
There is a Null Pointer Dereference in function filter_core/filter_pck.c:gf_filter_pck_new_alloc_internal in GPAC 1.0.1. The pid comes from function av1dmx_parse_flush_sample, the ctx.opid maybe NULL. The result is a crash in gf_filter_pck_new_alloc_internal.
CVSS 5.5
CVE-2021-30014 WRITEUP MEDIUM
GPAC 0.9.0-1.0.1 - Integer Overflow in HEVC Slice Segment Parser
There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC from v0.9.0-preview to 1.0.1 which results in a crash.
CVSS 5.5
CVE-2021-30014 WRITEUP MEDIUM
GPAC 0.9.0-1.0.1 - Integer Overflow in HEVC Slice Segment Parser
There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC from v0.9.0-preview to 1.0.1 which results in a crash.
CVSS 5.5
CVE-2021-29279 WRITEUP HIGH
GPAC 1.0.1 - Integer Overflow in gf_props_assign_value
There is a integer overflow in function filter_core/filter_props.c:gf_props_assign_value in GPAC 1.0.1. In which, the arg const GF_PropertyValue *value,maybe value->value.data.size is a negative number. In result, memcpy in gf_props_assign_value failed.
CVSS 7.8
CVE-2021-28300 WRITEUP CRITICAL
GPAC 0.5.2 - NULL Pointer Dereference in MergeTrack Function
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5.2 allows attackers to execute arbitrary code or cause a Denial-of-Service (DoS) by uploading a malicious MP4 file.
CVSS 9.8
CVE-2020-6631 WRITEUP MEDIUM
GPAC 0.8.0 - NULL Pointer Dereference in gf_m2ts_stream_process_pmt
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c.
CVSS 5.5
CVE-2020-6630 WRITEUP MEDIUM
GPAC 0.8.0 - NULL Pointer Dereference in gf_isom_get_media_data_size
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c.
CVSS 5.5
CVE-2020-35982 WRITEUP HIGH
GPAC 0.8.0 and 1.0.1 - NULL Pointer Dereference in gf_hinter_track_finalize
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gf_hinter_track_finalize() in media_tools/isom_hinter.c.
CVSS 7.8
CVE-2020-35981 WRITEUP HIGH
GPAC 0.8.0 and 1.0.1 - NULL Pointer Dereference in SetupWriters()
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters() in isomedia/isom_store.c.
CVSS 7.8
CVE-2020-35980 WRITEUP HIGH
GPAC 0.8.0 and 1.0.1 - Use-After-Free in gf_isom_box_del()
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.
CVSS 7.8
CVE-2020-35979 WRITEUP HIGH
GPAC 0.8.0 and 1.0.1 - Heap-Based Buffer Overflow in gp_rtp_builder_do_avc
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gp_rtp_builder_do_avc() in ietf/rtp_pck_mpeg4.c.
CVSS 7.8
CVE-2020-25427 WRITEUP MEDIUM
GPAC MP4Box - Denial of Service via Null Pointer Dereference in gf_isom_get_track_id
A Null pointer dereference vulnerability exits in MP4Box - GPAC version 0.8.0-rev177-g51a8ef874-master via the gf_isom_get_track_id function, which causes a denial of service.
CVSS 5.5
CVE-2020-24829 WRITEUP MEDIUM
GPAC 0.5.2-0.8.0 - Heap-Based Buffer Overflow in MP4Box via Crafted MP4 File
An issue was discovered in GPAC from v0.5.2 to v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.
CVSS 5.5
CVE-2020-24829 WRITEUP MEDIUM
GPAC 0.5.2-0.8.0 - Heap-Based Buffer Overflow in MP4Box via Crafted MP4 File
An issue was discovered in GPAC from v0.5.2 to v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.
CVSS 5.5
CVE-2020-23932 WRITEUP MEDIUM
gpac < 1.0.1 - Denial of Service via NULL Pointer Dereference in dump_isom_sdp
An issue was discovered in gpac before 1.0.1. A NULL pointer dereference exists in the function dump_isom_sdp located in filedump.c. It allows an attacker to cause Denial of Service.
CVSS 5.5
CVE-2020-23931 WRITEUP HIGH
gpac < 1.0.1 - Heap-Based Buffer Over-Read in abst_box_read
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
CVSS 7.1
CVE-2020-23931 WRITEUP HIGH
gpac < 1.0.1 - Heap-Based Buffer Over-Read in abst_box_read
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
CVSS 7.1
CVE-2020-23930 WRITEUP MEDIUM
gpac < 1.0.1 - Denial of Service via NULL Pointer Dereference in nhmldump_send_header
An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function nhmldump_send_header located in write_nhml.c. It allows an attacker to cause Denial of Service.
CVSS 5.5
CVE-2020-23928 WRITEUP HIGH
gpac < 1.0.1 - Heap-Based Buffer Over-Read in abst_box_read
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
CVSS 7.1
CVE-2020-23928 WRITEUP HIGH
gpac < 1.0.1 - Heap-Based Buffer Over-Read in abst_box_read
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
CVSS 7.1
CVE-2020-23269 WRITEUP MEDIUM
gpac 0.8.0 - Denial of Service via Heap-Based Buffer Overflow in stbl_GetSampleSize
An issue was discovered in gpac 0.8.0. The stbl_GetSampleSize function in isomedia/stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file.
CVSS 5.5
CVE-2020-23267 WRITEUP HIGH
gpac 0.8.0 - Denial of Service via Heap-Based Buffer Overflow in gf_hinter_track_process
An issue was discovered in gpac 0.8.0. The gf_hinter_track_process function in isom_hinter_track_process.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file
CVSS 7.1
CVE-2020-23266 WRITEUP MEDIUM
gpac 0.8.0 - Heap-Based Buffer Overflow in OD_ReadUTF8String
An issue was discovered in gpac 0.8.0. The OD_ReadUTF8String function in odf_code.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file.
CVSS 5.5
By Source
All 60,504 Writeup 60,504 Exploitdb 50,014 Nomisec 21,952 Metasploit 3,232 Github 2,971 Vulncheck_xdb 909 Inthewild 514 Gitlab 443 Gitee 415 Patchapalooza 312
By Language
text 31,346 python 6,222 ruby 5,922 c 3,592 perl 2,849 html 2,056 php 1,327 bash 460 java 364 c++ 252 javascript 220 shell 101 go 64 postscript 25 xml 24