CVE-2025-7797 | GPAC up to 2.4 dash_client.c gf_dash_download_init_segment base_init_url null pointer dereference

A vulnerability was found in GPAC up to 2.4. It has been rated as problematic. Affected by this issue is the function gf_dash_download_init_segment of the file src/media_tools/dash_client.c. The manipulation of the argument base_init_url leads to null pointer dereference.

This vulnerability is handled as CVE-2025-7797. The attack may be launched remotely. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More