Bento4 Security Vulnerabilities and Issues — Bento4 CVE List

Lucene search

AxiosysBento4

11 matches found

CVE•added 2022/09/30 5:15 a.m.•50 views

CVE-2022-41845

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_Array::EnsureCapacity in Core/Ap4Array.h.

5.5CVSS5.5AI score0.00028EPSS

CVE•added 2022/09/30 5:15 a.m.•49 views

CVE-2022-41841

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File.

5.5CVSS5.4AI score0.00026EPSS

CVE•added 2022/09/30 5:15 a.m.•47 views

CVE-2022-41846

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp.

5.5CVSS5.5AI score0.00026EPSS

CVE•added 2022/09/15 4:15 a.m.•44 views

CVE-2022-40736

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in AP4_CttsAtom::Create in Core/Ap4CttsAtom.cpp.

6.5CVSS6.4AI score0.0011EPSS

CVE•added 2022/09/15 4:15 a.m.•44 views

CVE-2022-40738

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.

6.5CVSS6.4AI score0.00156EPSS

CVE•added 2022/09/18 7:15 p.m.•44 views

CVE-2022-40775

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields.

5.5CVSS5.4AI score0.00072EPSS

CVE•added 2022/09/30 5:15 a.m.•43 views

CVE-2022-41847

An issue was discovered in Bento4 1.6.0-639. A memory leak exists in AP4_StdcFileByteStream::Create(AP4_FileByteStream*, char const*, AP4_FileByteStream::Mode, AP4_ByteStream*&) in System/StdC/Ap4StdCFileByteStream.cpp.

5.5CVSS5.4AI score0.00175EPSS

CVE•added 2022/09/14 9:15 p.m.•40 views

CVE-2022-40438

Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.

6.5CVSS6.3AI score0.00133EPSS

CVE•added 2022/09/18 7:15 p.m.•37 views

CVE-2022-40774

An issue was discovered in Bento4 through 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize.

5.5CVSS5.4AI score0.00072EPSS

CVE•added 2022/09/14 9:15 p.m.•36 views

CVE-2022-40439

An memory leak issue was discovered in AP4_StdcFileByteStream::Create in mp42ts in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.

6.5CVSS6.1AI score0.00092EPSS

CVE•added 2022/09/15 4:15 a.m.•29 views

CVE-2022-40737

An issue was discovered in Bento4 through 1.6.0-639. A buffer over-read exists in the function AP4_StdcFileByteStream::WritePartial located in System/StdC/Ap4StdCFileByteStream.cpp, called from AP4_ByteStream::Write and AP4_HdlrAtom::WriteFields.

6.5CVSS6.5AI score0.00154EPSS