PatchSiren cyber security CVE debrief
CVE-2025-55642 GPAC CVE debrief
A floating point exception was discovered in GPAC MP4Box v2.4 in the avidmx_process function (isomedia/isom_write.c). This vulnerability has a CVSS score of 6.5 and a severity of MEDIUM.
- Vendor
- GPAC
- Product
- MP4Box
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Users of GPAC MP4Box v2.4 should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability is caused by a floating point exception in the avidmx_process function (isomedia/isom_write.c).
Defensive priority
MEDIUM
Recommended defensive actions
- Update to a version of GPAC MP4Box that is not vulnerable.
Evidence notes
The CVE record was published on 2026-06-15T20:16:23.257Z and last modified on 2026-06-15T21:16:32.593Z.
Official resources
-
CVE-2025-55642 CVE record
CVE.org
-
CVE-2025-55642 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
-
Source reference
af854a3a-2127-422b-91ae-364da2661108
CVE-2025-55642 was published on 2026-06-15T20:16:23.257Z.