CVE-2026-1415 | GPAC up to 2.4.0 media_export.c gf_media_export_webvtt_metadata Name null pointer dereference (Issue 3428)

Inserito da Angelo Barbosa | Gen 25, 2026 | CVE

A vulnerability classified as problematic has been found in GPAC up to 2.4.0. Affected is the function gf_media_export_webvtt_metadata of the file src/media_tools/media_export.c. The manipulation of the argument Name leads to null pointer dereference.

This vulnerability is listed as CVE-2026-1415. The attack must be carried out locally. In addition, an exploit is available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-1415 | GPAC up to 2.4.0 media_export.c gf_media_export_webvtt_metadata Name null pointer dereference (Issue 3428)

Post correlati

CVE-2025-0591 | Omron FA Integrated Tool Package CX-One out-of-bounds (OMSR-2025-003)

CVE-2025-54670 | oik Plugin up to 4.15.2 on WordPress cross site scripting

CVE-2024-5335 | bdthemes Ultimate Store Kit Elementor Addons Plugin up to 1.6.4 on WordPress _ultimate_store_kit_compare_products deserialization

CVE-2025-28987 | PressForward Plugin up to 5.9.1 on WordPress server-side request forgery