Gopro: >> Gpmf-Parser >> 1.01 Security Vulnerabilities
GoPro gpmf-parser through 1.5 has a stack out-of-bounds write vulnerability in GPMF_ExpandComplexTYPE(). Parsing malicious input can result in a crash or potentially arbitrary code execution.
CVSS Score
8.8
EPSS Score
0.009
Published
2020-10-19
An issue was discovered in GoPro gpmf-parser before 1.2.1. There is a divide-by-zero error in GPMF_ScaledData in GPMF_parser.c.
CVSS Score
5.5
EPSS Score
0.003
Published
2018-10-09