CVSS 3.1 Score 5.5 of 10 (medium)


Published Nov 14, 2023
Updated: Nov 21, 2023
CWE ID 401


CVE-2023-47384 is a vulnerability found in MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master. It involves a memory leak in the function gf_isom_add_chapter at /isomedia/isom_write.c, which can be exploited by attackers through a crafted MP4 file. This vulnerability has a base severity rating of MEDIUM and an exploitability score of 1.8 out of 10. It requires user interaction to be triggered and has a low attack complexity. While it does not impact integrity or confidentiality, it poses a high availability impact, potentially leading to a Denial of Service (DoS) attack. Remediation steps are not specified in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-47384 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options