Question 1

What is CVE-2025-60474 — CVE-2025-60474?

Accepted Answer

A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted input.

Question 2

What is the authoritative source for CVE-2025-60474?

Accepted Answer

CVE-2025-60474 (CVE-2025-60474) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2025-60474CVE-2025-60474

Description

Scoring