A heap-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via the gprtpbuilderdompeg12_video function, which allows attackers to possibly have unspecified other impact via a crafted file in the MP4Box command,
{ "source": "CPE_STRING", "cpe": "cpe:2.3:a:gpac:gpac:1.0.1:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "1.0.1" }, { "last_affected": "1.0.1" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-36412.json"