CVE-2021-33361

Name of the Vulnerable Software and Affected Versions GPAC version 1.0.1

Description The issue is related to a memory leak in the afra box read function in MP4Box, a component of the GPAC multimedia platform. This allows attackers to read memory via a crafted file, potentially giving them access to confidential data. The exploitation of this issue can be done remotely.

Recommendations For GPAC version 1.0.1, consider disabling the afra box read function until a patch is available to prevent potential memory leaks and unauthorized access to data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.