CVE-2023-48039

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 20, 2023
Updated: Nov 30, 2023
CWE ID 401

Summary

CVE-2023-48039 denotes a memory leak vulnerability affecting GPAC 2.3-DEV-rev617-g671976fcc-master. The issue lies within the media_tools/mpd.c file, specifically at line 75 in the gf_mpd_parse_string function. This vulnerability allows an attacker to cause the application to exhaust memory resources by manipulating certain input strings, which could lead to denial-of-service conditions or potential code execution. It's crucial for users of GPAC to apply a patch to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share