CVE-2023-48039
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 20, 2023
Updated: Nov 30, 2023
CWE ID 401
Summary
CVE-2023-48039 denotes a memory leak vulnerability affecting GPAC 2.3-DEV-rev617-g671976fcc-master. The issue lies within the media_tools/mpd.c file, specifically at line 75 in the gf_mpd_parse_string function. This vulnerability allows an attacker to cause the application to exhaust memory resources by manipulating certain input strings, which could lead to denial-of-service conditions or potential code execution. It's crucial for users of GPAC to apply a patch to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- GPAC