CVE-2020-19488

MEDIUM5.5EPSS 0.17%

Published: 7/21/2021Modified: 4/28/2026

Description

An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read.

Affected packages (1)

Debian/gpacfrom 0, < 1.0.1+dfsg1-2

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.5	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-19488