Lucene search
HistoryAug 18, 2022 - 5:15 a.m.
CVE-2022-35165
cve-2022-35165
bento4-1.6.0-639
denial of service
dos
mp4
nvd
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.2%
An issue in AP4_SgpdAtom::AP4_SgpdAtom() of Bento4-1.6.0-639 allows attackers to cause a Denial of Service (DoS) via a crafted mp4 input.
Affected configurations
Node
axiosysbento4Match1.6.0-639
| CPE | Name | Operator | Version |
|---|---|---|---|
| axiosys:bento4 | axiosys bento4 | eq | 1.6.0-639 |
Related
ubuntucve
ubuntucve
CVE-2022-35165
2022-08-18 00:00:00
cvelist
cvelist
CVE-2022-35165
2022-08-18 04:49:05
nvd
nvd
CVE-2022-35165
2022-08-18 05:15:07
prion
prion
Input validation
2022-08-18 05:15:00
osv
osv
CVE-2022-35165
2022-08-18 05:15:07
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.2%
Related for CVE-2022-35165