{"id":"CVE-2023-4720","summary":"Floating Point Comparison with Incorrect Operator in gpac/gpac","details":"Floating Point Comparison with Incorrect Operator in GitHub repository gpac/gpac prior to 2.3-DEV.","modified":"2026-04-12T09:35:14.797099Z","published":"2023-09-01T15:27:40.853Z","database_specific":{"cwe_ids":["CWE-1077"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/4xxx/CVE-2023-4720.json","cna_assigner":"@huntrdev"},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/1dc2954c-8497-49fa-b2af-113e1e9381ad"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/4xxx/CVE-2023-4720.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4720"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/e396648e48c57e2d53988d3fd4465b068b96c89a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"fixed":"e396648e48c57e2d53988d3fd4465b068b96c89a"}],"database_specific":{"source":"REFERENCES"}}],"versions":["v0.5.2","v0.6.0","v0.9.0","v0.9.0-preview","v1.0.0","v2.0.0","v2.2.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-4720.json","vanir_signatures":[{"signature_type":"Line","id":"CVE-2023-4720-052a0bcc","digest":{"threshold":0.9,"line_hashes":["257322214665738915756009524341523150825","42457082883101006379802522374764705873","295545532765022282098637147128563740329","88179268504307799867425488032069801605","316927571602887229765720236659784861529","141668644934546262947830762500612561134","188321440801758630201828589250351124606","199681457422590788326381358611336512504","102654444854691840239382803653735229081","309381169996292592051840891083712368455","249664812117710698121170084427941254786","211943136606914272521339178422486039830","268960914809286059072876211863281131997","107331530816113930683383497824705406066","9706199203491191494932395510826005453","51806667916734320059327190169803232125","91024819131452113035255630043349825954","51655487767824076461179965177409541806","42464446518155892904888608614027729218","173968038636769806339089341263422898846","334092580665262542039202201810793978097","71940914204969361778081358309093014151","324955679808486093450959498750383662290","210523232569303595549415809827708763635","190595024425132180279921164454340681988","261583649713407598802083791972672106818","214518371115488388034569932341752920214","310979043465050989908176011670058445998","200567445701175821087335991603166415462","276161833296515580626218451699073355458","141442163320381596312374940399703224228","127754267578011746076555988018189682904"]},"deprecated":false,"target":{"file":"src/scene_manager/swf_parse.c"},"source":"https://github.com/gpac/gpac/commit/e396648e48c57e2d53988d3fd4465b068b96c89a","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2023-4720-61b330ab","digest":{"length":174,"function_hash":"265304640290121147780383074669541233881"},"deprecated":false,"target":{"file":"src/scene_manager/swf_parse.c","function":"swf_get_16"},"source":"https://github.com/gpac/gpac/commit/e396648e48c57e2d53988d3fd4465b068b96c89a","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2023-4720-a91045c1","digest":{"length":266,"function_hash":"108475132397674687848201107494137199487"},"deprecated":false,"target":{"file":"src/scene_manager/swf_parse.c","function":"swf_get_32"},"source":"https://github.com/gpac/gpac/commit/e396648e48c57e2d53988d3fd4465b068b96c89a","signature_version":"v1"},{"signature_type":"Function","id":"CVE-2023-4720-dfa2f1fe","digest":{"length":196,"function_hash":"103736624310539161568701478248513290232"},"deprecated":false,"target":{"file":"src/scene_manager/swf_parse.c","function":"swf_get_s16"},"source":"https://github.com/gpac/gpac/commit/e396648e48c57e2d53988d3fd4465b068b96c89a","signature_version":"v1"}],"vanir_signatures_modified":"2026-04-12T09:35:14Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}]}