Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axiosys bento4 - vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-21066
An issue exists in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aac.
Axiosys Bento4 1.5.1.0
605
VMScore
CVE-2018-5253
The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.
Axiosys Bento4 1.5.1.0
605
VMScore
CVE-2019-15047
An issue exists in Bento4 1.5.1.0. There is a heap-based buffer over-read in the function AP4_BitReader::SkipBits at Core/Ap4Utils.cpp.
Axiosys Bento4 1.5.1.0
383
VMScore
CVE-2019-17454
Bento4 1.5.1.0 has a NULL pointer dereference in AP4_Descriptor::GetTag in Core/Ap4Descriptor.h, related to AP4_StsdAtom::GetSampleDescription in Core/Ap4StsdAtom.cpp, as demonstrated by mp4info.
Axiosys Bento4 1.5.1.0
605
VMScore
CVE-2019-17529
An issue exists in Bento4 1.5.1.0. There is a heap-based buffer over-read in AP4_CencSampleEncryption::DoInspectFields in Core/Ap4CommonEncryption.cpp when called from AP4_Atom::Inspect in Core/Ap4Atom.cpp.
Axiosys Bento4 1.5.1.0
445
VMScore
CVE-2019-13238
An issue exists in Bento4 1.5.1.0. A memory allocation failure is unhandled in Core/Ap4SdpAtom.cpp and leads to crashes. When parsing input video, the program allocates a new buffer to parse an atom in the stream. The unhandled memory allocation failure causes a direct copy to a ...
Axiosys Bento4 1.5.1.0
383
VMScore
CVE-2022-29017
Bento4 v1.6.0.0 exists to contain a segmentation fault via the component /x86_64/multiarch/strlen-avx2.S.
Axiosys Bento4 1.6.0.0
NA
CVE-2022-40884
Bento4 1.6.0 has memory leaks via the mp4fragment.
Axiosys Bento4 1.6.0
1 Github repository
605
VMScore
CVE-2019-20090
An issue exists in Bento4 1.5.1.0. There is a use-after-free in AP4_Sample::GetOffset in Core/Ap4Sample.h when called from Ap4LinearReader.cpp.
Axiosys Bento4 1.5.1.0
383
VMScore
CVE-2019-20091
An issue exists in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp.
Axiosys Bento4 1.5.1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »