CVE-2025-70307

High CVSS: 7.5

A stack overflow in the dump_ttxt_sample function of GPAC v2.4.0 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Vendor

Product

CWE

Yayın Tarihi

2026-01-15 18:16:37

Güncelleme

2026-01-30 17:58:53

Source Identifier

cve@mitre.org

KEV Date Added

CWE-121 Gpac HIGH Gpac 2026

https://github.com/zakkanijia/POC/blob/main/gpac_boxDump/GPAC_tx3g.md

High

CVE-2026-27821

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs dur…

Medium

CVE-2026-1417

A weakness has been identified in GPAC up to 2.4.0. Affected by this issue is the function dump_isom_rtp of the file app…

Medium

CVE-2026-1418

A security vulnerability has been detected in GPAC up to 2.4.0. This affects the function gf_text_import_srt_bifs of the…

Medium

CVE-2026-1416

A security flaw has been discovered in GPAC up to 2.4.0. Affected by this vulnerability is the function DumpMovieInfo of…

Medium

CVE-2026-1415

A vulnerability was identified in GPAC up to 2.4.0. Affected is the function gf_media_export_webvtt_metadata of the file…

Medium

CVE-2025-70302

A heap overflow in the ghi_dmx_declare_opid_bin() function of GPAC v2.4.0 allows attackers to cause a Denial of Service…