CVE-2025-55652 | THREATINT

Description

A heap buffer overflow in the gf_isom_vp_config_new function (isomedia/avc_ext.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

PUBLISHED Reserved 2025-08-13 | Published 2026-06-15 | Updated 2026-06-15 | Assigner mitre

References

www.openwall.com/lists/oss-security/2026/06/13/4

infosec.exchange/@sigdevel/116736829161374790

cve.org (CVE-2025-55652)

nvd.nist.gov (CVE-2025-55652)

Download JSON