CVE-2025-70303

Name of the Vulnerable Software and Affected Versions GPAC version 2.4.0

Description A heap overflow exists in the uncv parse config() function when processing a specially crafted MP4 file. This can lead to a Denial of Service (DoS).

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to or avoiding the processing of untrusted MP4 files until a patch is available.