Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 bento4 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-4584
A vulnerability was found in Axiomatic Bento4 up to 1.6.0-639. It has been rated as critical. Affected by this issue is some unknown functionality of the component mp42aac. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exploit has ...
Axiosys Bento4
5.5
CVSSv3
CVE-2022-40774
An issue exists in Bento4 up to and including 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize.
Axiosys Bento4
5.5
CVSSv3
CVE-2022-40775
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields.
Axiosys Bento4
5.5
CVSSv3
CVE-2022-41841
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File.
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23331
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_DescriptorListWriter::Action component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4 -
7.5
CVSSv3
CVE-2020-23333
A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9. This can lead to a denial of service (DOS).
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23334
A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.
Axiosys Bento4
6.5
CVSSv3
CVE-2021-35307
An issue exists in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the AP4_DescriptorFinder::Test component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
5.5
CVSSv3
CVE-2017-12475
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt prior to 1.5.0-616 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23330
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_Stz2Atom::GetSampleSize component located in /Core/Ap4Stz2Atom.cpp. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »