Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axiosys bento4 - vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-3809
A vulnerability was found in Axiomatic Bento4 and classified as problematic. Affected by this issue is the function ParseCommandLine of the file Mp4Tag/Mp4Tag.cpp of the component mp4tag. The manipulation leads to denial of service. The attack may be launched remotely. The exploi...
Axiosys Bento4
8.8
CVSSv3
CVE-2021-32265
An issue exists in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::WritePartial() located in Ap4ByteStream.cpp. It allows an malicious user to cause code execution or information disclosure.
Axiosys Bento4
5.5
CVSSv3
CVE-2017-12475
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt prior to 1.5.0-616 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
Axiosys Bento4
6.5
CVSSv3
CVE-2021-35306
An issue exists in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the function AP4_StszAtom::WriteFields located in Ap4StszAtom.cpp. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
6.5
CVSSv3
CVE-2021-35307
An issue exists in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the AP4_DescriptorFinder::Test component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
6.5
CVSSv3
CVE-2022-40737
An issue exists in Bento4 up to and including 1.6.0-639. A buffer over-read exists in the function AP4_StdcFileByteStream::WritePartial located in System/StdC/Ap4StdCFileByteStream.cpp, called from AP4_ByteStream::Write and AP4_HdlrAtom::WriteFields.
Axiosys Bento4
6.5
CVSSv3
CVE-2022-40738
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23330
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_Stz2Atom::GetSampleSize component located in /Core/Ap4Stz2Atom.cpp. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23331
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_DescriptorListWriter::Action component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4 -
7.5
CVSSv3
CVE-2020-23334
A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.
Axiosys Bento4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »