CVE-2024-6061

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: GPAC version 2.5-DEV-rev228-g11067ea92-master

Description: A problematic issue has been found, affecting the isoffin process function of the src/filters/isoffin read.c file in the MP4Box component. This issue leads to an infinite loop. The attack can be launched on the local host.

Recommendations: Apply a patch to fix this issue, specifically the patch with identifier 20c0f29139a82779b86453ce7f68d0681ec7624c.

Exploit

Fix

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

BDU:2025-12575

CVE-2024-6061

Affected Products

Debian

Gpac

Red Os

CVE-2024-6061

Weakness Enumeration

Related Identifiers

Affected Products

References · 16