{"id":"CVE-2020-19488","details":"An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read.","modified":"2026-04-11T12:40:12.882702Z","published":"2021-07-21T18:15:08.957Z","references":[{"type":"FIX","url":"https://github.com/gpac/gpac/commit/6170024568f4dda310e98ef7508477b425c58d09"},{"type":"EVIDENCE","url":"https://github.com/gpac/gpac/issues/1263"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"last_affected":"6b4ab401297be43b57f9eddd675971a8a5feab44"},{"fixed":"6170024568f4dda310e98ef7508477b425c58d09"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"0.8.0"}]}}],"versions":["v0.5.2","v0.6.0","v0.7.0","v0.7.1","v0.8.0"],"database_specific":{"vanir_signatures_modified":"2026-04-11T12:40:12Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-19488.json","vanir_signatures":[{"target":{"function":"ilst_item_box_read","file":"src/isomedia/box_code_apple.c"},"digest":{"length":1729,"function_hash":"76557726008365586309866346198720532336"},"source":"https://github.com/gpac/gpac/commit/6170024568f4dda310e98ef7508477b425c58d09","signature_type":"Function","deprecated":false,"signature_version":"v1","id":"CVE-2020-19488-15bb639f"},{"target":{"file":"src/isomedia/box_code_apple.c"},"digest":{"line_hashes":["93052003416229134326844688799505428902","137638215521662659213169629412788171523","218856652493421116641591856317043504045","215335284481261113098767767928878411580","300668904883607872971667183085576413148","130934968920720747450702108576285489587","313525340958840565967647329992440436085","324483646226687389449473943369863747743"],"threshold":0.9},"source":"https://github.com/gpac/gpac/commit/6170024568f4dda310e98ef7508477b425c58d09","signature_type":"Line","deprecated":false,"signature_version":"v1","id":"CVE-2020-19488-af8e27b5"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}