CVE-2025-55648 | THREATINT

Description

A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

PUBLISHED Reserved 2025-08-13 | Published 2026-06-15 | Updated 2026-06-15 | Assigner mitre

References

www.openwall.com/lists/oss-security/2026/06/13/10

infosec.exchange/@sigdevel/116736751244916557

cve.org (CVE-2025-55648)

nvd.nist.gov (CVE-2025-55648)

Download JSON