CVE-2025-15668 | GPAC up to b40ce70f5 MP4Box box_code_base.c sgpd_del_entry data heap-based overflow (Issue 3398)
A vulnerability classified as critical was found in GPAC up to b40ce70f5. This issue affects the function sgpd_del_entry of the file src/isomedia/box_code_base.c of the component MP4Box. Such manipulation of the argument data leads to heap-based buffer overflow.
This vulnerability is uniquely identified as CVE-2025-15668. Local access is required to approach this attack. Moreover, an exploit is present.
It is advisable to implement a patch to correct this issue.VulDB Recent EntriesRead More