Sign in Get started

← All advisories

Unrated severityOSV Advisory· Published Jan 15, 2026· Updated Jan 15, 2026

CVE-2025-70299

CVE-2025-70299

Description

A heap overflow in the avi_parse_input_file() function of GPAC v2.4.0 allows attackers to cause a Denial of Service (DoS) via a crafted AVI file.

Affected products

1

Gpac/GpacOSV
Range: v0.5.2, v0.6.0, v0.9.0, …

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/zakkanijia/POC/blob/main/gpac_avi/GPAC_AVI_indx_heap_overflow.mdmitre

News mentions

0

No linked articles in our index yet.