Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
5.5 MEDIUM
CVE-2025-55645 — GPAC MP4Box Heap Buffer Overflow

A heap buffer overflow in the gf_cenc_set_pssh function (isomedia/drm_sample.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

gpac | Memory Corruption
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
5.5 MEDIUM
CVE-2025-55644 — GPAC MP4Box Heap Use-After-Free

A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

gpac | Memory Corruption
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
5.5 MEDIUM
CVE-2025-55643 — GPAC MP4Box: NULL Pointer Dereference Denial of Service

A NULL pointer dereference in the TrackWriter handling component (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

gpac | Denial of Service
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
6.5 MEDIUM
CVE-2025-55642 — GPAC MP4Box Floating Point Exception

GPAC MP4Box v2.4 was discovered to contain a floating point exception in the avidmx_process function (isomedia/isom_write.c).

gpac | Remote | Memory Corruption
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
5.5 MEDIUM
CVE-2025-55641 — GPAC MP4Box NULL Pointer Dereference Denial of Service

A NULL pointer dereference in the gf_isom_copy_sample_info function (isomedia/isom_write.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

gpac | Memory Corruption
Jun 15, 2026 Jun 17, 2026
Jun 15, 2026
Jun 17, 2026
Showing 20 of 8465 Results