Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axiosys bento4 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-21066
An issue exists in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aac.
Axiosys Bento4 1.5.1.0
6.8
CVSSv2
CVE-2018-5253
The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.
Axiosys Bento4 1.5.1.0
5
CVSSv2
CVE-2018-10790
The AP4_CttsAtom class in Core/Ap4CttsAtom.cpp in Bento4 1.5.1.0 allows remote malicious users to cause a denial of service (application crash), related to a memory allocation failure, as demonstrated by mp2aac.
Axiosys Bento4 1.5.1.0
5
CVSSv2
CVE-2019-13238
An issue exists in Bento4 1.5.1.0. A memory allocation failure is unhandled in Core/Ap4SdpAtom.cpp and leads to crashes. When parsing input video, the program allocates a new buffer to parse an atom in the stream. The unhandled memory allocation failure causes a direct copy to a ...
Axiosys Bento4 1.5.1.0
6.8
CVSSv2
CVE-2019-20090
An issue exists in Bento4 1.5.1.0. There is a use-after-free in AP4_Sample::GetOffset in Core/Ap4Sample.h when called from Ap4LinearReader.cpp.
Axiosys Bento4 1.5.1.0
4.3
CVSSv2
CVE-2019-20091
An issue exists in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp.
Axiosys Bento4 1.5.1.0
4.3
CVSSv2
CVE-2019-20092
An issue exists in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_EsDescriptor::GetDecoderConfigDescriptor in Ap4EsDescriptor.cpp.
Axiosys Bento4 1.5.1.0
4.3
CVSSv2
CVE-2022-31282
Bento4 MP4Dump v1.2 exists to contain a segmentation violation via an unknown address at /Source/C++/Core/Ap4DataBuffer.cpp:175.
Axiosys Bento4 1.2
4.3
CVSSv2
CVE-2022-31285
An issue exists in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h.
Axiosys Bento4 1.2
NA
CVE-2022-40884
Bento4 1.6.0 has memory leaks via the mp4fragment.
Axiosys Bento4 1.6.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »