Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-14646
The AP4_AvccAtom and AP4_HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp.
Axiosys Bento4 1.5.0-617
6.5
CVSSv3
CVE-2020-19721
A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running mp42aac, leading to system crashes and a denial of service (DOS).
Axiosys Bento4 1.5.1-628
5.5
CVSSv3
CVE-2022-3663
A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. This issue affects the function AP4_StsdAtom of the file Ap4StsdAtom.cpp of the component MP4fragment. The manipulation leads to null pointer dereference. The attack may be initiated remotely. The ex...
Axiosys Bento4 1.6.0-639
5.5
CVSSv3
CVE-2022-35165
An issue in AP4_SgpdAtom::AP4_SgpdAtom() of Bento4-1.6.0-639 allows malicious users to cause a Denial of Service (DoS) via a crafted mp4 input.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-41419
Bento4 v1.6.0-639 exists to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-41423
Bento4 v1.6.0-639 exists to contain a segmentation violation in the mp4fragment component.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-41424
Bento4 v1.6.0-639 exists to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-41426
Bento4 v1.6.0-639 exists to contain a memory leak via the AP4_AtomFactory::CreateAtomFromStream function in mp4split.
Axiosys Bento4 1.6.0-639
8.8
CVSSv3
CVE-2022-41428
Bento4 v1.6.0-639 exists to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux.
Axiosys Bento4 1.6.0-639
7.8
CVSSv3
CVE-2017-14260
In the SDK in Bento4 1.5.0-616, the AP4_StssAtom class in Ap4StssAtom.cpp contains a Write Memory Access Violation vulnerability. It is possible to exploit this vulnerability and possibly execute arbitrary code by opening a crafted .MP4 file.
Axiosys Bento4 1.5.0-616
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »