CVE-2026-1418 | GPAC up to 2.4.0 SRT Subtitle Import text_to_bifs.c gf_text_import_srt_bifs out-of-bounds write (Issue 3425)

Inserito da Angelo Barbosa | Gen 25, 2026 | CVE

A vulnerability, which was classified as critical, was found in GPAC up to 2.4.0. This affects the function gf_text_import_srt_bifs of the file src/scene_manager/text_to_bifs.c of the component SRT Subtitle Import. Such manipulation leads to out-of-bounds write.

This vulnerability is documented as CVE-2026-1418. The attack needs to be performed locally. Additionally, an exploit exists.

It is best practice to apply a patch to resolve this issue.

CVE-2026-1418 | GPAC up to 2.4.0 SRT Subtitle Import text_to_bifs.c gf_text_import_srt_bifs out-of-bounds write (Issue 3425)

Post correlati

CVE-2024-5521 | Alkacon OpenCMS 16 SVG File cross site scripting

CVE-2024-24256 | Yonyou space-time enterprise information integration platform saveMove.jsp information disclosure

CVE-2024-0786 | Conversios Plugin up to 6.9.1 on WordPress ee_syncProductCategory sql injection

CVE-2024-6024 | ContentLock Plugin up to 1.0.3 on WordPress Group/Email cross-site request forgery