Bento4@1.5.1-628 Security Vulnerabilities and Issues — Bento4@1.5.1-628 CVE List

Lucene search

AxiosysBento41.5.1-628

13 matches found

CVE•added 2021/07/13 10:15 p.m.•83 views

CVE-2020-19721

A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running mp42aac, leading to system crashes and a denial of service (DOS).

6.5CVSS6.6AI score0.00435EPSS

CVE•added 2024/02/29 1:44 a.m.•72 views

CVE-2024-24155

Bento4 v1.5.1-628 contains a Memory leak on AP4_Movie::AP4_Movie, parsing tracks and added into m_Tracks list, but mp42aac cannot correctly delete when we got an no audio track found error. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted mp4 file.

6.5CVSS6.5AI score0.00278EPSS

CVE•added 2021/07/13 10:15 p.m.•54 views

CVE-2020-19717

An unhandled memory allocation failure in Core/Ap48bdlAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).

6.5CVSS6.3AI score0.00285EPSS

CVE•added 2021/07/13 10:15 p.m.•48 views

CVE-2020-19718

An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).

6.5CVSS6.3AI score0.00285EPSS

CVE•added 2021/07/13 10:15 p.m.•47 views

CVE-2020-19719

A buffer overflow vulnerability in Ap4ElstAtom.cpp of Bento 1.5.1-628 leads to a denial of service (DOS).

6.5CVSS6.5AI score0.604EPSS

CVE•added 2021/07/13 10:15 p.m.•45 views

CVE-2020-19720

An unhandled memory allocation failure in Core/AP4IkmsAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).

6.5CVSS6.3AI score0.00285EPSS

CVE•added 2021/07/13 10:15 p.m.•44 views

CVE-2020-19722

An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a direct copy to NULL pointer dereference, leading to a denial of service (DOS).

6.5CVSS6.3AI score0.00285EPSS

CVE•added 2019/01/25 11:29 p.m.•34 views

CVE-2019-6966

An issue was discovered in Bento4 1.5.1-628. The AP4_ElstAtom class in Core/Ap4ElstAtom.cpp has an attempted excessive memory allocation related to AP4_Array::EnsureCapacity in Core/Ap4Array.h, as demonstrated by mp42hls.

6.5CVSS6.3AI score0.00308EPSS

CVE•added 2019/02/17 2:29 a.m.•34 views

CVE-2019-8378

An issue was discovered in Bento4 1.5.1-628. A heap-based buffer over-read exists in AP4_BitStream::ReadBytes() in Codecs/Ap4BitStream.cpp, a similar issue to CVE-2017-14645. It can be triggered by sending a crafted file to the aac2mp4 binary. It allows an attacker to cause a Denial of Service (Seg...

8.8CVSS7.2AI score0.00402EPSS

CVE•added 2019/02/17 2:29 a.m.•33 views

CVE-2019-8380

An issue was discovered in Bento4 1.5.1-628. A NULL pointer dereference occurs in AP4_Track::GetSampleIndexForTimeStampMs() located in Core/Ap4Track.cpp. It can triggered by sending a crafted file to the mp4audioclip binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or...

8.8CVSS8.9AI score0.00345EPSS

CVE•added 2019/09/16 1:15 p.m.•30 views

CVE-2019-16349

Bento4 1.5.1-628 has a NULL pointer dereference in AP4_ByteStream::ReadUI32 in Core/Ap4ByteStream.cpp when called from the AP4_TrunAtom class.

5.5CVSS5.4AI score0.00178EPSS

CVE•added 2019/02/17 2:29 a.m.•30 views

CVE-2019-8382

An issue was discovered in Bento4 1.5.1-628. A NULL pointer dereference occurs in the function AP4_List:Find located in Core/Ap4List.h when called from Core/Ap4Movie.cpp. It can be triggered by sending a crafted file to the mp4dump binary. It allows an attacker to cause a Denial of Service (Segment...

8.8CVSS8.9AI score0.00345EPSS

CVE•added 2019/03/01 7:29 p.m.•29 views

CVE-2019-9544

An issue was discovered in Bento4 1.5.1-628. An out of bounds write occurs in AP4_CttsTableEntry::AP4_CttsTableEntry() located in Core/Ap4Array.h. It can be triggered by sending a crafted file to (for example) the mp42hls binary. It allows an attacker to cause Denial of Service (Segmentation fault)...

8.8CVSS9.1AI score0.00402EPSS