Sign in Get started

← All advisories

Unrated severityOSV Advisory· Published Jan 15, 2026· Updated Jan 15, 2026

CVE-2025-70303

CVE-2025-70303

Description

A heap overflow in the uncv_parse_config() function of GPAC v2.4.0 allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.

Affected products

1

Gpac/GpacOSV
Range: v0.5.2, v0.6.0, v0.9.0, …

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/zakkanijia/POC/blob/main/gpac_uncv/GPAC_UNCV_CPAT.mdmitre

News mentions

0

No linked articles in our index yet.