Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-20408
An issue exists in Bento4 1.5.1-627. There is a memory leak in AP4_StdcFileByteStream::Create in System/StdC/Ap4StdCFileByteStream.cpp, as demonstrated by mp42hls.
Axiosys Bento4 1.5.1-627
6.5
CVSSv3
CVE-2018-20409
An issue exists in Bento4 1.5.1-627. There is a heap-based buffer over-read in AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp, as demonstrated by mp42hls.
Axiosys Bento4 1.5.1-627
6.5
CVSSv3
CVE-2018-20502
An issue exists in Bento4 1.5.1-627. There is an attempt at excessive memory allocation in the AP4_DataBuffer class when called from AP4_HvccAtom::Create in Core/Ap4HvccAtom.cpp.
Axiosys Bento4 1.5.1-627
6.5
CVSSv3
CVE-2022-43035
An issue exists in Bento4 v1.6.0-639. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a Denial of Service (DoS), as demonstrated by mp42aac.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-43037
An issue exists in Bento4 1.6.0-639. There is a memory leak in the function AP4_File::ParseStream in /Core/Ap4File.cpp.
Axiosys Bento4 1.6.0-639
7.5
CVSSv3
CVE-2019-6132
An issue exists in Bento4 v1.5.1-627. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp when called from the AP4_EsdsAtom class in Core/Ap4EsdsAtom.cpp, as demonstrated by mp42aac.
Axiosys Bento4 1.5.1-627
6.5
CVSSv3
CVE-2022-43032
An issue exists in Bento4 v1.6.0-639. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp, as demonstrated by mp42aac.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-43034
An issue exists in Bento4 v1.6.0-639. There is a heap buffer overflow vulnerability in the AP4_BitReader::SkipBits(unsigned int) function in mp42ts.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2022-43038
Bento4 v1.6.0-639 exists to contain a heap overflow via the AP4_BitReader::ReadCache() function in mp42ts.
Axiosys Bento4 1.6.0-639
5.5
CVSSv3
CVE-2021-40943
In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC. This can cause a denial of service (DOS).
Axiosys Bento4 1.6.0-638
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »