Writeup Exploits

60,504 exploits tracked across all sources.

Sort: Activity Stars
CVE-2020-22679 WRITEUP MEDIUM
gpac 0.8.0 - Denial of Service via Memory Leak in sgpd_parse_entry
Memory leak in the sgpd_parse_entry function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service (DoS) via a crafted input.
CVSS 5.5
CVE-2020-22678 WRITEUP MEDIUM
gpac 0.8.0 - Heap-Based Buffer Overflow in gf_media_nalu_remove_emulation_bytes
An issue was discovered in gpac 0.8.0. The gf_media_nalu_remove_emulation_bytes function in av_parsers.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
CVSS 5.5
CVE-2020-22677 WRITEUP MEDIUM
gpac 0.8.0 - Denial of Service via Heap-Based Buffer Overflow in dump_data_hex
An issue was discovered in gpac 0.8.0. The dump_data_hex function in box_dump.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
CVSS 5.5
CVE-2020-22675 WRITEUP MEDIUM
gpac 0.8.0 - Heap-Based Buffer Overflow in GetGhostNum Function
An issue was discovered in gpac 0.8.0. The GetGhostNum function in stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
CVSS 5.5
CVE-2020-22674 WRITEUP MEDIUM
gpac 0.8.0 - Denial of Service via Invalid Memory Dereference in FixTrackID
An issue was discovered in gpac 0.8.0. An invalid memory dereference exists in the function FixTrackID located in isom_intern.c, which allows attackers to cause a denial of service (DoS) via a crafted input.
CVSS 5.5
CVE-2020-22673 WRITEUP MEDIUM
gpac 0.8.0 - Denial of Service via Memory Leak in senc_Parse
Memory leak in the senc_Parse function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service (DoS) via a crafted input.
CVSS 5.5
CVE-2020-22352 WRITEUP MEDIUM
GPAC v0.8 - Denial of Service via Crafted MP4Box Input File
The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
CVSS 5.5
CVE-2020-19751 WRITEUP CRITICAL
gpac 0.8.0 - Heap-Based Buffer Over-Read in gf_odf_del_ipmp_tool
An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap-based buffer over-read.
CVSS 9.1
CVE-2020-19750 WRITEUP HIGH
gpac 0.8.0 - Heap-Based Buffer Over-Read in strdup Function
An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read.
CVSS 7.5
CVE-2020-19488 WRITEUP MEDIUM
gpac MP4Box 0.8.0 - Denial of Service via Invalid Read in ilst_item_Read
An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read.
CVSS 5.5
CVE-2020-19481 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid memory read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2020-19481 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid memory read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2020-19481 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid memory read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2020-11558 WRITEUP CRITICAL
GPAC 0.8.0 - Use-After-Free in audio_sample_entry_Read
An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_isom_parse_movie_boxes.
CVSS 9.8
CVE-2019-20632 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_odf_delete_descriptor in odf/desc_private.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2019-20631 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Crafted MP4 File
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_list_count in utils/list.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2019-20630 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Heap-Based Buffer Over-Read in Bitstream Parser
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2019-20629 WRITEUP MEDIUM
GPAC < 0.8.0 - Denial of Service via Heap-Based Buffer Over-Read in MP4Box
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2019-20628 WRITEUP MEDIUM
GPAC < 0.8.0 - Use-After-Free in gf_m2ts_process_pmt
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2019-20628 WRITEUP MEDIUM
GPAC < 0.8.0 - Use-After-Free in gf_m2ts_process_pmt
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVSS 5.5
CVE-2019-20208 WRITEUP MEDIUM
GPAC 0.5.2-0.8.0 - Stack-based Buffer Overflow in dimC_Read
dimC_Read in isomedia/box_code_3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow.
CVSS 5.5
CVE-2019-20208 WRITEUP MEDIUM
GPAC 0.5.2-0.8.0 - Stack-based Buffer Overflow in dimC_Read
dimC_Read in isomedia/box_code_3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow.
CVSS 5.5
CVE-2019-20171 WRITEUP MEDIUM
GPAC 0.5.2-0.9.0-development-20191109 - Memory Leak in metx_New and abst_Read Functions
An issue was discovered in GPAC version 0.5.2 and 0.9.0-development-20191109. There are memory leaks in metx_New in isomedia/box_code_base.c and abst_Read in isomedia/box_code_adobe.c.
CVSS 5.5
CVE-2019-20170 WRITEUP MEDIUM
GPAC 0.8.0 and 0.9.0-development-20191109 - Use-After-Free in GF_IPMPX_AUTH_Delete
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is an invalid pointer dereference in the function GF_IPMPX_AUTH_Delete() in odf/ipmpx_code.c.
CVSS 5.5
CVE-2019-20169 WRITEUP MEDIUM
GPAC 0.8.0 and 0.9.0-development-20191109 - Use-After-Free in trak_Read()
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trak_Read() in isomedia/box_code_base.c.
CVSS 5.5
By Source
All 60,504 Writeup 60,504 Exploitdb 50,014 Nomisec 21,956 Metasploit 3,232 Github 2,974 Vulncheck_xdb 909 Inthewild 514 Gitlab 443 Gitee 415 Patchapalooza 312
By Language
text 31,346 python 6,224 ruby 5,922 c 3,592 perl 2,849 html 2,056 php 1,327 bash 460 java 364 c++ 252 javascript 220 shell 101 go 64 postscript 25 xml 24