Unrated severityNVD Advisory· Published Jun 24, 2026· Updated Jun 24, 2026

CVE-2025-60466

Description

A use-after-free in the gf_filter_pid_get_packet function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted media file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Gpac/Gpacllm-fuzzy
Range: <26.02.0

Patches

Vulnerability mechanics

References

github.com/gpac/gpac/commit/4a7ea06dd1b2cc65fe0dabc60189eb6bc814f7bbmitre
github.com/gpac/gpac/issues/3284mitre
github.com/sigdevel/pocs/blob/main/res/gpac/MP4Box/35/35_gf_filter_pid_get_packet_filter_core_filter_pid_c_6827mitre
github.com/sigdevel/pocs/blob/main/res/gpac/MP4Box/35/README.mdmitre
infosec.exchange/@sigdevel/116780402249845037mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000