CVE-2024-28318

HIGH

gpac 2.3-DEV-rev921-g422b78ecf-master - Out-of-bounds Write via swf_get_string

Title source: llm
STIX 2.1

Description

gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write vulnerability via swf_get_string at scene_manager/swf_parse.c:325

References (1)

Core 1
Core References

Scores

CVSS v3 7.1
EPSS 0.0017
EPSS Percentile 37.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-787
Status published
Products (1)
gpac/gpac 2.3-dev-rev921-g422b78ecf-master
Published Mar 15, 2024
Tracked Since Feb 18, 2026