CVE-2022-3669

2022-10-2619:15:26

Google

osv.dev

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

23.4%

JSON

A vulnerability was found in Axiomatic Bento4 and classified as problematic. This issue affects the function AP4_AvccAtom::Create of the component mp4edit. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-212009 was assigned to this vulnerability.

CPENameOperatorVersion
bento4eq1.5.0-618
bento4eq1.4.2-590
bento4eq1.5.1-622
bento4eq1.4.3-595
bento4eq1.4.3-600
bento4eq1.5.0-615
bento4eq1.4.2-593
bento4eq1.4.3-607
bento4eq1.5.1-629
bento4eq1.5.1-623

Name	Operator	Version
bento4	eq	1.5.0-618
bento4	eq	1.4.2-590
bento4	eq	1.5.1-622
bento4	eq	1.4.3-595
bento4	eq	1.4.3-600
bento4	eq	1.5.0-615
bento4	eq	1.4.2-593
bento4	eq	1.4.3-607
bento4	eq	1.5.1-629
bento4	eq	1.5.1-623