Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bento4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-13238
An issue exists in Bento4 1.5.1.0. A memory allocation failure is unhandled in Core/Ap4SdpAtom.cpp and leads to crashes. When parsing input video, the program allocates a new buffer to parse an atom in the stream. The unhandled memory allocation failure causes a direct copy to a ...
Axiosys Bento4 1.5.1.0
6.5
CVSSv3
CVE-2020-21066
An issue exists in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aac.
Axiosys Bento4 1.5.1.0
5.5
CVSSv3
CVE-2022-40884
Bento4 1.6.0 has memory leaks via the mp4fragment.
Axiosys Bento4 1.6.0
1 Github repository
6.5
CVSSv3
CVE-2019-17454
Bento4 1.5.1.0 has a NULL pointer dereference in AP4_Descriptor::GetTag in Core/Ap4Descriptor.h, related to AP4_StsdAtom::GetSampleDescription in Core/Ap4StsdAtom.cpp, as demonstrated by mp4info.
Axiosys Bento4 1.5.1.0
7.5
CVSSv3
CVE-2019-17528
An issue exists in Bento4 1.5.1.0. There is a SEGV in the function AP4_TfhdAtom::SetDefaultSampleSize at Core/Ap4TfhdAtom.h when called from AP4_Processor::ProcessFragments in Core/Ap4Processor.cpp.
Axiosys Bento4 1.5.1.0
7.8
CVSSv3
CVE-2019-17529
An issue exists in Bento4 1.5.1.0. There is a heap-based buffer over-read in AP4_CencSampleEncryption::DoInspectFields in Core/Ap4CommonEncryption.cpp when called from AP4_Atom::Inspect in Core/Ap4Atom.cpp.
Axiosys Bento4 1.5.1.0
8.8
CVSSv3
CVE-2022-41429
Bento4 v1.6.0-639 exists to contain a heap overflow via the AP4_Atom::TypeFromString function in mp4tag.
Axiosys Bento4 1.6.0-639
6.5
CVSSv3
CVE-2020-19718
An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).
Axiosys Bento4 1.5.1-628
6.5
CVSSv3
CVE-2020-19719
A buffer overflow vulnerability in Ap4ElstAtom.cpp of Bento 1.5.1-628 leads to a denial of service (DOS).
Axiosys Bento4 1.5.1-628
7.8
CVSSv3
CVE-2022-3784
A vulnerability classified as critical was found in Axiomatic Bento4 5e7bb34. Affected by this vulnerability is the function AP4_Mp4AudioDsiParser::ReadBits of the file Ap4Mp4AudioInfo.cpp of the component mp4hls. The manipulation leads to heap-based buffer overflow. The attack c...
Axiosys Bento4 1.6.0-639
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »