CVE-2019-7699

2019-02-1022:29:00

Google

osv.dev

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.5%

JSON

A heap-based buffer over-read occurs in AP4_BitStream::WriteBytes in Codecs/Ap4BitStream.cpp in Bento4 v1.5.1-627. Remote attackers could leverage this vulnerability to cause an exception via crafted mp4 input, which leads to a denial of service.

CPENameOperatorVersion
bento4eq1.4.3-595
bento4eq1.4.2-586
bento4eq1.5.0-612
bento4eq1.5.0-611
bento4eq1.5.1-620
bento4eq1.5.0-615
bento4eq1.4.3-608
bento4eq1.5.0-609
bento4eq1.4.3-606
bento4eq1.4.2-591

Name	Operator	Version
bento4	eq	1.4.3-595
bento4	eq	1.4.2-586
bento4	eq	1.5.0-612
bento4	eq	1.5.0-611
bento4	eq	1.5.1-620
bento4	eq	1.5.0-615
bento4	eq	1.4.3-608
bento4	eq	1.5.0-609
bento4	eq	1.4.3-606
bento4	eq	1.4.2-591