PT-2026-55853 · Undefined · Undefined

Kery Qi

·

Published

2026-07-06

·

Updated

2026-07-06

·

CVE-2026-14790

CVSS v2.0

1.7

Low

VectorAV:L/AC:L/Au:S/C:N/I:N/A:P
A flaw has been found in GPAC 26.02.0. This affects the function nhmldump send frame of the file src/filters/write nhml.c of the component Media File Handler. Executing a manipulation can lead to null pointer dereference. The attack requires local access. The exploit has been published and may be used. This patch is called bd1d94e70e3bef364c07c5a1d94eca5c9f56e160. A patch should be applied to remediate this issue. The project explains: "I would consider most of these more as bugs than vulns but anyway they're good to fix".

Exploit

Fix

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-14790

Affected Products

Undefined