Heap-Based Buffer Over-Read Vulnerability in GPAC 2.0.0

Heap-Based Buffer Over-Read Vulnerability in GPAC 2.0.0

CVE-2022-29537 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

gp_rtp_builder_do_hevc in ietf/rtp_pck_mpeg4.c in GPAC 2.0.0 has a heap-based buffer over-read, as demonstrated by MP4Box.

Learn more about our Web Application Penetration Testing UK.