CVE-2026-5236 Axiomatic Bento4 DSI v1 Ap4Dac4Atom.cpp SkipBits heap-based overflow

A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4BitReader::SkipBits of the file Ap4Dac4Atom.cpp of the component DSI v1 Parser. Such manipulation of the argument npresentations leads to heap-based buffer overflow. The attack needs to be performed...

EUVD-2024-28922

Malicious code in bioql PyPI...

EUVD-2025-4600

Malicious code in bioql PyPI...

CVE-2025-25947

An issue in Bento4 v1.6.0-641 allows an attacker to trigger a segmentation fault via Ap4Atom.cpp, specifically in AP4AtomParent::RemoveChild, during the execution of mp4encrypt with a specially crafted MP4 input file...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 version v1.6.0-641, which originates from a memory leak in Ap4Marlin.cpp...

PT-2025-7583 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-641 Description: A buffer overflow issue in Bento4 allows a local attacker to execute arbitrary code via the AP4 Stz2Atom::AP4 Stz2Atom component located in Ap4Stz2Atom.cpp. This enables local arbitrary code execution...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 version v1.6.0-641, which stems from a buffer overflow in Ap4RtpAtom.cpp that allows local execution of arbitrary code...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 version v1.6.0-641, which originates from an unfilled memory in Mp4Fragment.cpp, leading to an information leak...

PT-2025-7585 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-641 Description: An issue in Bento4 allows an attacker to obtain sensitive information via the Mp4Fragment.cpp and in AP4 DescriptorFactory::CreateDescriptorFromStream at Ap4DescriptorFactory.cpp. Recommendations: For...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 version 1.6.0-641, which stems from a floating-point exception vulnerability in the AP4TfraAtom function of Ap4TfraAtom.cpp, which allows remote attackers to...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 1.6.0-641 and earlier versions, which stems from a heap buffer overflow in the AP4DataBuffer::GetData function...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in Bento4 version v.1.6.0-641, which stems from a buffer overflow in the AP4MemoryByteStream::WritePartial method of the Ap4ByteStream.cpp file that could lead to remote code execution...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in the Bento4 v1.6.0-641-2-g1529b83 release that stems from a denial of service issue in the AP4Dec3Atom::AP4Dec3Atom method of the Ap4Dec3Atom.cpp file...

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in Bento4 version v.1.6.0-641. A remote attacker can exploit this vulnerability to execute arbitrary code via Ap4MdhdAtom.cpp,AP4MdhdAtom::AP4MdhdAtom,mp4fragment...