CVE-2021-33363

Name of the Vulnerable Software and Affected Versions GPAC version 1.0.1

Description The issue is related to a memory leak in the infe box read function of the MP4Box component in the GPAC multimedia platform. This allows attackers to read memory via a crafted file, potentially giving them access to confidential data. The vulnerability can be exploited by a remote attacker using a specially created file.

Recommendations For GPAC version 1.0.1, consider disabling the infe box read function until a patch is available to prevent potential memory leaks and unauthorized access to data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.