Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axiosys bento4 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-32265
An issue exists in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::WritePartial() located in Ap4ByteStream.cpp. It allows an malicious user to cause code execution or information disclosure.
Axiosys Bento4
5.5
CVSSv3
CVE-2017-12475
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt prior to 1.5.0-616 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23334
A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.
Axiosys Bento4
6.5
CVSSv3
CVE-2022-40737
An issue exists in Bento4 up to and including 1.6.0-639. A buffer over-read exists in the function AP4_StdcFileByteStream::WritePartial located in System/StdC/Ap4StdCFileByteStream.cpp, called from AP4_ByteStream::Write and AP4_HdlrAtom::WriteFields.
Axiosys Bento4
6.5
CVSSv3
CVE-2022-40738
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.
Axiosys Bento4
5.5
CVSSv3
CVE-2022-41841
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File.
Axiosys Bento4
5.5
CVSSv3
CVE-2022-40774
An issue exists in Bento4 up to and including 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize.
Axiosys Bento4
5.5
CVSSv3
CVE-2022-40775
An issue exists in Bento4 up to and including 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields.
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23330
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_Stz2Atom::GetSampleSize component located in /Core/Ap4Stz2Atom.cpp. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4
7.5
CVSSv3
CVE-2020-23331
An issue exists in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_DescriptorListWriter::Action component located in /Core/Ap4Descriptor.h. It allows an malicious user to cause a denial of service (DOS).
Axiosys Bento4 -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »