Sign in Get started

← All advisories

Unrated severityOSV Advisory· Published Jan 15, 2026· Updated Jan 15, 2026

CVE-2025-70298

CVE-2025-70298

Description

GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmx_parse_tags function.

Affected products

1

Gpac/GpacOSV
Range: v0.5.2, v0.6.0, v0.9.0, …

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/zakkanijia/POC/blob/main/dmx_ogg/GPAC_oggdmx_parse_tags_offbyone.mdmitre

News mentions

0

No linked articles in our index yet.