CVE-2025-7797 – GPAC Dash Client Null Pointer Dereference Remote Vulnerability

July 18, 2025

CVE ID : CVE-2025-7797

Published : July 18, 2025, 6:15 p.m. | 4 hours, 31 minutes ago

Description : A vulnerability was found in GPAC up to 2.4. It has been rated as problematic. Affected by this issue is the function gf_dash_download_init_segment of the file src/media_tools/dash_client.c. The manipulation of the argument base_init_url leads to null pointer dereference. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The patch is identified as 153ea314b6b053db17164f8bc3c7e1e460938eaa. It is recommended to apply a patch to fix this issue.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-33014 – IBM Sterling B2B Integrator and IBM Sterling File Gateway Cross-Site Scripting (XSS) Vulnerability

Next Article CVE-2025-7796 – Tenda PPTPDClient Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-48492 – GetSimple CMS Remote Code Execution (RCE) Vulnerability

May 30, 2025

CVE ID : CVE-2025-48492

Published : May 30, 2025, 7:15 a.m. | 2 hours, 21 minutes ago

Description : GetSimple CMS is a content management system. In versions starting from 3.3.16 to 3.3.21, an authenticated user with access to the Edit component can inject arbitrary PHP into a component file and execute it via a crafted query string, resulting in Remote Code Execution (RCE). This issue is set to be patched in version 3.3.22.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

Report: 71% of tech leaders won’t hire devs without AI skills

Could OpenAI’s rumored browser be a Chrome-killer? Here’s what I’m expecting

My favorite lens and screen-cleaning kit keeps my tech spotless, and it only costs $8

AI’s biggest impact on your workforce is still to come – 3 ways to avoid getting left behind

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

The details of TC39’s last meeting

The details of TC39’s last meeting

Online Examination System using PHP and MySQL

A tricky, educational quiz: it’s about time..

CAD Sketcher – constraint-based geometry sketcher

CAD Sketcher – constraint-based geometry sketcher

7 Best Free and Open Source Linux FTP Servers

Best Free and Open Source Alternatives to Autodesk FBX Review

CVE-2025-7797 – GPAC Dash Client Null Pointer Dereference Remote Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Meta Invests $14.3 Billion in Scale AI, Recruits Founder Alexandr Wang for Superintelligence Lab

Microsoft Fixes Stuck Update Bug in Windows 11 24H2 with KB5062324 Patch

AxOS is an Arch-based Linux distribution for the desktop

CVE-2025-45997 – Sourcecodester Web-based Pharmacy Product Management System File Upload Vulnerability

CVE-2025-48492 – GetSimple CMS Remote Code Execution (RCE) Vulnerability

VS meldt actief misbruik van kwetsbaarheden in Craft CMS

Chris’ Corner: Tokens

CVE-2025-5222 – ICU Buffer Overflow Vulnerability

CVE-2025-7797 – GPAC Dash Client Null Pointer Dereference Remote Vulnerability

Related Posts