CVE-2023-1452

MEDIUM

GPAC 2.3-DEV-rev35-gbbca86917-master - Buffer Overflow

Title source: llm

Description

A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file filters/load_text.c. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-223297 was assigned to this vulnerability.

References (4)

Core 4

Core References

Permissions Required, Third Party Advisory, VDB Entry vdb-entry technical-description

https://vuldb.com/?id.223297

Permissions Required, Third Party Advisory, VDB Entry signature permissions-required

https://vuldb.com/?ctiid.223297

Exploit, Issue Tracking, Third Party Advisory issue-tracking

https://github.com/gpac/gpac/issues/2386

Exploit exploit

https://github.com/xxy1126/Vuln/blob/main/gpac/1.mp4

View Exploit ZIP pw:eip

Scores

CVSS v3 5.3

EPSS 0.0005

EPSS Percentile 14.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

CWE

CWE-120

Status published

Products (1)

gpac/gpac 2.3 dev

Published Mar 17, 2023

Tracked Since Feb 18, 2026