CVE-2017-14647

2017-09-2117:29:00

Google

osv.dev

8.4 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.0%

JSON

A heap-based buffer overflow was discovered in AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.

CPENameOperatorVersion
bento4eq1.5.0-611
bento4eq1.4.2-591
bento4eq1.4.2-588
bento4eq1.5.0-613
bento4eq1.4.3-600
bento4eq1.4.2-590
bento4eq1.4.3-608
bento4eq1.4.2-589
bento4eq1.5.0-610
bento4eq1.4.3-598

Name	Operator	Version
bento4	eq	1.5.0-611
bento4	eq	1.4.2-591
bento4	eq	1.4.2-588
bento4	eq	1.5.0-613
bento4	eq	1.4.3-600
bento4	eq	1.4.2-590
bento4	eq	1.4.3-608
bento4	eq	1.4.2-589
bento4	eq	1.5.0-610
bento4	eq	1.4.3-598