Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 bento4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-4584
A vulnerability was found in Axiomatic Bento4 up to 1.6.0-639. It has been rated as critical. Affected by this issue is some unknown functionality of the component mp42aac. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exploit has ...
Axiosys Bento4
NA
CVE-2022-40774
An issue exists in Bento4 up to and including 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize.
Axiosys Bento4
NA
CVE-2022-40775
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields.
Axiosys Bento4
NA
CVE-2022-41841
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File.
Axiosys Bento4
445
VMScore
CVE-2020-23331
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_DescriptorListWriter::Action component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4 -
445
VMScore
CVE-2020-23333
A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9. This can lead to a denial of service (DOS).
Axiosys Bento4
445
VMScore
CVE-2020-23334
A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.
Axiosys Bento4
383
VMScore
CVE-2021-35307
An issue exists in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the AP4_DescriptorFinder::Test component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
383
VMScore
CVE-2017-12475
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt prior to 1.5.0-616 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
Axiosys Bento4
445
VMScore
CVE-2020-23330
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_Stz2Atom::GetSampleSize component located in /Core/Ap4Stz2Atom.cpp. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »