CVE-2025-70116
Deferred Deferred - Pending Action
NULL Pointer Dereference in GPAC MP4Box

Publication date: 2026-05-27

Last updated on: 2026-06-01

Assigner: MITRE

Description
A NULL pointer dereference in GPAC MP4Box: when parsing certain truncated MP4 files, an unknown/invalid stsd entry can result in missing descriptor fields (e.g., codec/mime/profile strings). gf_media_map_esd then calls strlen() on a NULL pointer, triggering a crash (ASan SEGV).
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-27
Last Modified
2026-06-01
Generated
2026-06-17
AI Q&A
2026-05-27
EPSS Evaluated
2026-06-15
NVD
CVE-2025-70116
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
gpac mp4box *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-70116 is a vulnerability in GPAC's MP4Box tool where processing certain malformed or truncated MP4 files leads to a crash due to a NULL pointer dereference.

Specifically, when MP4Box parses an invalid or unknown 'stsd' entry missing descriptor fields such as codec, mime, or profile strings, the function gf_media_map_esd calls strlen() on a NULL pointer. This causes a segmentation fault (SEGV) and crashes the program.

The issue arises from improper handling of corrupted media files, leading to invalid memory access and program termination.

Impact Analysis

This vulnerability can cause the MP4Box tool to crash when processing certain malformed or truncated MP4 files.

The crash results from a NULL pointer dereference, which leads to a denial-of-service (DoS) condition by terminating the application unexpectedly.

If MP4Box is used in automated media processing pipelines or services, this could disrupt operations or be exploited by attackers to cause service interruptions.

Detection Guidance

This vulnerability can be detected by processing potentially malformed or truncated MP4 files with GPAC's MP4Box tool and observing if it crashes due to a segmentation fault (SEGV) in the function gf_media_map_esd.

A practical detection method involves running MP4Box on suspicious MP4 files, especially those with invalid or missing descriptor fields in the stsd box (such as missing codec, mime, or profile strings). If the tool crashes with an AddressSanitizer SEGV error related to a null pointer dereference, the vulnerability is triggered.

For example, on a Kali Linux system with MP4Box built with AddressSanitizer, you can run a command like:

  • mp4box -info suspicious_file.mp4

If the program crashes with a segmentation fault referencing gf_media_map_esd or reports a null pointer dereference, this indicates the presence of the vulnerability.

Mitigation Strategies

Immediate mitigation steps include avoiding the use of GPAC's MP4Box tool on untrusted or malformed MP4 files that could trigger the null pointer dereference and cause a crash.

Additionally, ensure that MP4 files are validated or sanitized before processing with MP4Box to prevent malformed descriptor fields in the stsd box.

If available, update GPAC MP4Box to a version that includes a fix for this vulnerability once released.

In environments where MP4Box is used in automated workflows, consider adding input validation or sandboxing to limit the impact of potential crashes.

Compliance Impact

The vulnerability in GPAC MP4Box causes a NULL pointer dereference leading to a crash when processing certain malformed MP4 files. This results in a denial-of-service condition due to improper handling of corrupted media files.

There is no information provided in the available resources or CVE description about the impact of this vulnerability on compliance with common standards or regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-70116. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart