Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 bento4 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-20408
An issue exists in Bento4 1.5.1-627. There is a memory leak in AP4_StdcFileByteStream::Create in System/StdC/Ap4StdCFileByteStream.cpp, as demonstrated by mp42hls.
Axiosys Bento4 1.5.1-627
4.3
CVSSv2
CVE-2018-20409
An issue exists in Bento4 1.5.1-627. There is a heap-based buffer over-read in AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp, as demonstrated by mp42hls.
Axiosys Bento4 1.5.1-627
4.3
CVSSv2
CVE-2018-20502
An issue exists in Bento4 1.5.1-627. There is an attempt at excessive memory allocation in the AP4_DataBuffer class when called from AP4_HvccAtom::Create in Core/Ap4HvccAtom.cpp.
Axiosys Bento4 1.5.1-627
NA
CVE-2022-43035
An issue exists in Bento4 v1.6.0-639. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a Denial of Service (DoS), as demonstrated by mp42aac.
Axiosys Bento4 1.6.0-639
NA
CVE-2022-43037
An issue exists in Bento4 1.6.0-639. There is a memory leak in the function AP4_File::ParseStream in /Core/Ap4File.cpp.
Axiosys Bento4 1.6.0-639
5
CVSSv2
CVE-2019-6132
An issue exists in Bento4 v1.5.1-627. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp when called from the AP4_EsdsAtom class in Core/Ap4EsdsAtom.cpp, as demonstrated by mp42aac.
Axiosys Bento4 1.5.1-627
NA
CVE-2022-43032
An issue exists in Bento4 v1.6.0-639. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp, as demonstrated by mp42aac.
Axiosys Bento4 1.6.0-639
NA
CVE-2022-43034
An issue exists in Bento4 v1.6.0-639. There is a heap buffer overflow vulnerability in the AP4_BitReader::SkipBits(unsigned int) function in mp42ts.
Axiosys Bento4 1.6.0-639
NA
CVE-2022-43038
Bento4 v1.6.0-639 exists to contain a heap overflow via the AP4_BitReader::ReadCache() function in mp42ts.
Axiosys Bento4 1.6.0-639
4.3
CVSSv2
CVE-2021-40943
In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC. This can cause a denial of service (DOS).
Axiosys Bento4 1.6.0-638
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »