Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axiosys bento4 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-17529
An issue exists in Bento4 1.5.1.0. There is a heap-based buffer over-read in AP4_CencSampleEncryption::DoInspectFields in Core/Ap4CommonEncryption.cpp when called from AP4_Atom::Inspect in Core/Ap4Atom.cpp.
Axiosys Bento4 1.5.1.0
4.3
CVSSv2
CVE-2018-20409
An issue exists in Bento4 1.5.1-627. There is a heap-based buffer over-read in AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp, as demonstrated by mp42hls.
Axiosys Bento4 1.5.1-627
NA
CVE-2022-43034
An issue exists in Bento4 v1.6.0-639. There is a heap buffer overflow vulnerability in the AP4_BitReader::SkipBits(unsigned int) function in mp42ts.
Axiosys Bento4 1.6.0-639
7.5
CVSSv2
CVE-2018-13846
An issue has been found in Bento4 1.5.1-624. AP4_Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp has a heap-based buffer over-read after a call from Mp42Ts.cpp, a related issue to CVE-2018-14532.
Axiosys Bento4 1.5.1-624
4.3
CVSSv2
CVE-2018-14544
There exists one invalid memory read bug in AP4_SampleDescription::GetFormat() in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow malicious users to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts.
Axiosys Bento4 1.5.1-624
4.3
CVSSv2
CVE-2019-13959
In Bento4 1.5.1-627, AP4_DataBuffer::SetDataSize does not handle reallocation failures, leading to a memory copy into a NULL pointer. This is different from CVE-2018-20186.
Axiosys Bento4 1.5.1-627
NA
CVE-2023-29573
Bento4 v1.6.0-639 exists to contain an out-of-memory bug in the mp4info component.
Axiosys Bento4 1.6.0-639
NA
CVE-2023-29574
Bento4 v1.6.0-639 exists to contain an out-of-memory bug in the mp42avc component.
Axiosys Bento4 1.6.0-639
NA
CVE-2023-29575
Bento4 v1.6.0-639 exists to contain an out-of-memory bug in the mp42aac component.
Axiosys Bento4 1.6.0-639
NA
CVE-2023-29576
Bento4 v1.6.0-639 exists to contain a segmentation violation via the AP4_TrunAtom::SetDataOffset(int) function in Ap4TrunAtom.h.
Axiosys Bento4 1.6.0-639
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »