CVE Catalog
CVE-2025-52292
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk0.04%
12th percentile - higher than 12% of all known CVEs
Summary
A stack buffer overflow in the filein_process function (in_file.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
Risk Assessment
Attackers can exploit this vulnerability to crash the application, potentially leading to service downtime and loss of system availability.
Recommendation
It is recommended to update to the latest version of GPAC MP4Box to mitigate this vulnerability and to monitor systems for suspicious MP4 files.
Original NVD description (English source)
A stack buffer overflow in the filein_process function (in_file.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

