gpac

402 tracked vulnerabilities.

CVE-2025-55647 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-55645 MEDIUM
GPAC MP4Box 2.4 - Heap-based Buffer Overflow in gf_cenc_set_pssh Function
Jun 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-55644 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Heap Use-After-Free in gf_node_get_tag
Jun 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-55643 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via NULL Pointer Dereference in TrackWriter
Jun 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-55642 MEDIUM
GPAC MP4Box 2.4 - Floating Point Exception in avidmx_process Function
Jun 15, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-55641 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-55659 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 09, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-55658 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 09, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-55657 HIGH
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-55651 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 09, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-52293 HIGH
GPAC MP4Box 2.4 - Denial of Service via Crafted HEVC SPS Data
Jun 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-52292 HIGH
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
Jun 09, 2026
CVSS 7.5
EPSS 0.01
CVE-2025-70303 MEDIUM
GPAC 2.4.0 - Denial of Service via Crafted MP4 File
Jan 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-70302 MEDIUM
GPAC 2.4.0 - Denial of Service via Heap Overflow in ghi_dmx_declare_opid_bin
Jan 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-70307 HIGH
GPAC 2.4.0 - Denial of Service via Crafted Packet in dump_ttxt_sample
Jan 15, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-70299 MEDIUM
GPAC 2.4.0 - Denial of Service via Crafted AVI File
Jan 15, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-70310 MEDIUM
GPAC 2.4.0 - Denial of Service via Crafted OGG File in vorbis_to_intern()
Jan 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-70309 MEDIUM
GPAC 2.4.0 - Denial of Service via Crafted WAV File
Jan 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-70308 HIGH
GPAC 2.4.0 - Denial of Service via GSF Demuxer Filter Out-of-Bounds Read
Jan 15, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-70305 MEDIUM
GPAC 2.4.0 - Denial of Service via Crafted .saf File
Jan 15, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-70304 HIGH
GPAC 2.4.0 - Denial of Service via vobsub_get_subpic_duration Buffer Overflow
Jan 15, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-70298 HIGH
GPAC 2.4.0 - Out-of-bounds Read in oggdmx_parse_tags
Jan 15, 2026
CVSS 8.2
EPSS 0.00
CVE-2025-7797 MEDIUM
GPAC <2.4 - Null Pointer Dereference
Jul 18, 2025
CVSS 5.3
EPSS 0.01
CVE-2025-25723 HIGH
GPAC 2.5 - Buffer Overflow
Feb 28, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-57184 MEDIUM
GPAC v0.8.0 - Heap-Based Buffer Overflow in gf_m2ts_process_pmt
Jan 24, 2025
CVSS 5.5
EPSS 0.00