PT-2026-55929 · Undefined · Undefined

Noki

·

Published

2026-07-06

·

Updated

2026-07-06

·

CVE-2025-15667

CVSS v2.0

1.7

Low

VectorAV:L/AC:L/Au:S/C:N/I:N/A:P
A vulnerability was determined in GPAC up to 2.5-DEV. This vulnerability affects the function gf isom nalu sample rewrite of the file src/isomedia/avc ext.c of the component MP4Box. This manipulation of the argument nalu out bs causes double free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. Patch name: f29f955f2a3b5e8e507caad3e52319f961bf37bf. To fix this issue, it is recommended to deploy a patch.

Exploit

Fix

Buffer Overflow

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2025-15667

Affected Products

Undefined