Lucene search
HistoryOct 19, 2022 - 2:15 p.m.
CVE-2022-43033
cve-2022-43033
bento4
dos
vulnerability
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
31.6%
An issue was discovered in Bento4 1.6.0-639. There is a bad free in the component AP4_HdlrAtom::~AP4_HdlrAtom() which allows attackers to cause a Denial of Service (DoS) via a crafted input.
Affected configurations
Node
axiosysbento4Match1.6.0-639
| CPE | Name | Operator | Version |
|---|---|---|---|
| axiosys:bento4 | axiosys bento4 | eq | 1.6.0-639 |
Social References
More
Related
ubuntucve
ubuntucve
CVE-2022-43033
2022-10-19 00:00:00
nvd
nvd
CVE-2022-43033
2022-10-19 14:15:09
prion
prion
Input validation
2022-10-19 14:15:00
cnvd
cnvd
Bento4 AP4_HdlrAtom::AP4_HdlrAtom function denial of service vulnerability
2022-10-21 00:00:00
cvelist
cvelist
CVE-2022-43033
2022-10-19 00:00:00
osv
osv
CVE-2022-43033
2022-10-19 14:15:09
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
31.6%
Related for CVE-2022-43033