CVE-2025-60466 | GPAC up to 26.1.x MP4Box filter_pid.c gf_filter_pid_get_packet use after free (Issue 3284 / EUVD-2025-210330)
A vulnerability was found in GPAC up to 26.1.x and classified as critical. This impacts the function gf_filter_pid_get_packet of the file /filter_core/filter_pid.c of the component MP4Box. Such manipulation leads to use after free.
This vulnerability is referenced as CVE-2025-60466. The attack needs to be initiated within the local network. Furthermore, an exploit is available.
It is suggested to upgrade the affected component.