Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-3785
A vulnerability, which was classified as critical, has been found in Axiomatic Bento4. Affected by this issue is the function AP4_DataBuffer::SetDataSize of the component Avcinfo. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The explo...
Axiosys Bento4 1.6.0-639
NA
CVE-2024-25454
Bento4 v1.6.0-640 exists to contain a NULL pointer dereference via the AP4_DescriptorFinder::Test() function.
Axiosys Bento4 1.6.0-640
6.8
CVSSv2
CVE-2018-14585
An issue has been discovered in Bento4 1.5.1-624. AP4_BytesToUInt16BE in Core/Ap4Utils.h has a heap-based buffer over-read after a call from the AP4_Stz2Atom class.
Axiosys Bento4 1.5.1-624
4.3
CVSSv2
CVE-2019-7697
An issue exists in Bento4 v1.5.1-627. There is an assertion failure in AP4_AtomListWriter::Action in Core/Ap4Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42hls.
Axiosys Bento4 1.5.1-627
4.3
CVSSv2
CVE-2019-7698
An issue exists in AP4_Array<AP4_CttsTableEntry>::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls, a related issue to CVE-2018-20095.
Axiosys Bento4 1.5.1-627
4.3
CVSSv2
CVE-2019-7699
A heap-based buffer over-read occurs in AP4_BitStream::WriteBytes in Codecs/Ap4BitStream.cpp in Bento4 v1.5.1-627. Remote attackers could leverage this vulnerability to cause an exception via crafted mp4 input, which leads to a denial of service.
Axiosys Bento4 1.5.1-627
NA
CVE-2022-40736
An issue exists in Bento4 1.6.0-639. There ie excessive memory consumption in AP4_CttsAtom::Create in Core/Ap4CttsAtom.cpp.
Axiosys Bento4 1.6.0-639
NA
CVE-2022-41419
Bento4 v1.6.0-639 exists to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary.
Axiosys Bento4 1.6.0-639
NA
CVE-2022-41423
Bento4 v1.6.0-639 exists to contain a segmentation violation in the mp4fragment component.
Axiosys Bento4 1.6.0-639
NA
CVE-2022-41424
Bento4 v1.6.0-639 exists to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls.
Axiosys Bento4 1.6.0-639
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »