CVE-2021-32136

Name of the Vulnerable Software and Affected Versions GPAC version 1.0.1

Description The issue is related to a heap buffer overflow in the print udta function in MP4Box, part of the GPAC multimedia platform. This allows attackers to cause a denial of service or potentially execute arbitrary code via a crafted file. The vulnerability can be exploited by a remote attacker to access confidential data, compromise data integrity, and cause a denial of service using a specially crafted file.

Recommendations For GPAC version 1.0.1, consider disabling the print udta function in MP4Box as a temporary workaround until a patch is available. Restrict access to crafted files that could exploit this issue to minimize the risk of denial of service or arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.