CVE-2025-7797 – GPAC Dash Client Null Pointer Dereference Remote Vulnerability

July 18, 2025

CVE ID : CVE-2025-7797

Published : July 18, 2025, 6:15 p.m. | 4 hours, 31 minutes ago

Description : A vulnerability was found in GPAC up to 2.4. It has been rated as problematic. Affected by this issue is the function gf_dash_download_init_segment of the file src/media_tools/dash_client.c. The manipulation of the argument base_init_url leads to null pointer dereference. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The patch is identified as 153ea314b6b053db17164f8bc3c7e1e460938eaa. It is recommended to apply a patch to fix this issue.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-33014 – IBM Sterling B2B Integrator and IBM Sterling File Gateway Cross-Site Scripting (XSS) Vulnerability

Next Article CVE-2025-7796 – Tenda PPTPDClient Stack-Based Buffer Overflow Vulnerability

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Hitachi Energy Pledges $1B to Strengthen US Grid, Build Largest Transformer Plant in Virginia

How to debug a web app with Playwright MCP and GitHub Copilot

Between Strategy and Story: Thierry Chopain’s Creative Path

What You Need to Know About CSS Color Interpolation

Why browsers throttle JavaScript timers (and what to do about it)

Why browsers throttle JavaScript timers (and what to do about it)

How to create Google Gemini AI component in Total.js Flow

Drupal 11’s AI Features: What They Actually Mean for Your Team

Harnessing GitOps on Linux for Seamless, Git-First Infrastructure Management

Harnessing GitOps on Linux for Seamless, Git-First Infrastructure Management

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

CVE-2025-7797 – GPAC Dash Client Null Pointer Dereference Remote Vulnerability

GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

Need a power bank you can keep in your pocket? I found one for $22 (and it packs a punch)

Critical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems Worldwide

“PS5 makes the most sense at the moment.” Ori dev suggests ‘No Rest for the Wicked’ will skip Xbox (for launch) due to “market conditions.”

The best push mowers of 2025: Expert picks from Cub Cadet, Makita, and more

DDoS attack on feminist blog backfires on International Women’s Day

7 Top Starter & Barebone Themes for WordPress Development

CVE-2025-5126 – “FLIR AX8 Remote Command Injection Vulnerability”

CVE-2025-4363 – iSourcecode Gym Management System SQL Injection Vulnerability

CVE-2025-7797 – GPAC Dash Client Null Pointer Dereference Remote Vulnerability

Related Posts