CVE-2023-0841
CVSS V2 None
CVSS V3 None
Description
A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3_dmx_process of the file filters/reframe_mp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221087.
Overview
- CVE ID
- CVE-2023-0841
- Assigner
- cna@vuldb.com
- Vulnerability Status
- Analyzed
- Published Version
- 2023-02-15T14:15:13
- Last Modified Date
- 2023-02-23T04:52:56
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
cpe:2.3:a:gpac:gpac:2.3-dev-rev40-g3602a5ded:*:*:*:*:*:*:* | 1 | OR |
References
Reference URL | Reference Tags |
---|---|
https://github.com/qianshuidewajueji/poc/blob/main/gpac/mp3_dmx_process_poc3 | Exploit |
https://vuldb.com/?ctiid.221087 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.221087 | Third Party Advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-0841 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0841 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2023-04-17 07:47:25 | Added to TrackCVE | |||
2023-04-17 07:47:28 | Weakness Enumeration | new | ||
2023-04-17 08:22:19 | CVSS V3 information | new | ||
2023-04-17 08:22:19 | CVSS V2 information | new |