Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-15185— GPAC MP4Box vobsub.c vobsub_read_idx out-of-bounds

CVSS 3.3 · Low EPSS 0.11% · P2

Possible ATT&CK Techniques 1AI

T1203 · Exploitation for Client Execution

Affected Version Matrix 1

VendorProductVersion RangeStatus
n/aGPAC26.03-DEVaffected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-15185

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
GPAC MP4Box vobsub.c vobsub_read_idx out-of-bounds
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability was determined in GPAC 26.03-DEV. This affects the function vobsub_read_idx of the file /src/media_tools/vobsub.c of the component MP4Box. Executing a manipulation of the argument num_langs can lead to out-of-bounds read. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. This patch is called 532097084729a936bcdf6a27c41003f3bd7dc3ff. It is best practice to apply a patch to resolve this issue. Two different commits were applied to fix this issue.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存读
Source: NVD (National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-GPAC 26.03-DEV cpe:2.3:a:gpac:gpac:*:*:*:*:*:*:*:*

II. Public POCs for CVE-2026-15185

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-15185

登录查看更多情报信息。

Patches & Fixes for CVE-2026-15185 (3)

Same Patch Batch · n/a · 2026-07-09 · 25 CVEs total

CVE-2026-151874.3 MEDIUMenquirer Public Package API Enquirer.set prototype pollution
CVE-2026-152024.3 MEDIUMYzmCMS Header yzmphp.php get_url cross site scripting
CVE-2026-151943.3 LOWOpen5GS AMF context.c amf_context_final use after free
CVE-2026-38076Artifex jbig2整数溢出致DoS漏洞
CVE-2026-39246decompress<4.2.2符号链接创建漏洞
CVE-2026-39243decompress <4.2.2硬链接验证缺失致文件泄露
CVE-2026-39245decompress <4.2.2 目录遍历与任意文件写入漏洞
CVE-2025-45422Proximus b-box v8c.725A 端口转发规则越权访问漏洞
CVE-2026-31267Mercusys MW302R V1.4.10 Web界面缓冲区溢出漏洞
CVE-2026-51923docuForm Client v11.11c IDOR漏洞致任意代码执行
CVE-2026-51925docuForm Client v11.11c LFI导致远程代码执行
CVE-2026-51926docuForm FSM Client v11.11c用户枚举漏洞
CVE-2026-51924docuForm Client v11.11c任意代码执行漏洞
CVE-2025-63579Kyocera多功能打印机地址簿信息泄露漏洞
CVE-2026-51602腾达CP3 V3.0 RTSP栈溢出致DoS
CVE-2026-51598水星 MIPC252W v1.0.5 RTSP拒绝服务漏洞
CVE-2026-51599MERCURY MIPC252W v1.0.5 RTSP服务拒绝服务漏洞
CVE-2026-51597水星MIPC252W v1.0.5 RTSP重放认证绕过漏洞
CVE-2026-51603Tenda CP3 V3.0 RTSP服务栈溢出导致拒绝服务
CVE-2026-51601Tenda CP3 V31.1.9.91 RTSP服务栈溢出致崩溃

Showing top 20 of 25 CVEs. View all on vendor page &rarr; →

IV. Related Vulnerabilities

V. Comments for CVE-2026-15185

No comments yet


Leave a comment