CVE-2021-32270

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions gpac versions through 20200801

Description An issue exists in the function vwid box del located in box code base.c, which allows an attacker to cause Denial of Service due to a NULL pointer dereference. This issue can be exploited by a remote attacker.

Recommendations For gpac versions through 20200801, as a temporary workaround, consider disabling the vwid box del function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2018-2923

ALT-PU-2021-1569

BDU:2022-01862

CVE-2021-32270

Affected Products

Alt Linux

Gpac

CVE-2021-32270

Weakness Enumeration

Related Identifiers

Affected Products

References · 12