Total
136 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-3785 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 7.8 HIGH |
| A vulnerability, which was classified as critical, has been found in Axiomatic Bento4. Affected by this issue is the function AP4_DataBuffer::SetDataSize of the component Avcinfo. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-212564. | |||||
| CVE-2022-3662 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 7.8 HIGH |
| A vulnerability was found in Axiomatic Bento4. It has been declared as critical. This vulnerability affects the function GetOffset of the file Ap4Sample.h of the component mp42hls. The manipulation leads to use after free. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-212002 is the identifier assigned to this vulnerability. | |||||
| CVE-2022-3670 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 7.8 HIGH |
| A vulnerability was found in Axiomatic Bento4. It has been classified as critical. Affected is the function WriteSample of the component mp42hevc. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-212010 is the identifier assigned to this vulnerability. | |||||
| CVE-2022-43037 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| An issue was discovered in Bento4 1.6.0-639. There is a memory leak in the function AP4_File::ParseStream in /Core/Ap4File.cpp. | |||||
| CVE-2022-3974 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 8.8 HIGH |
| A vulnerability classified as critical was found in Axiomatic Bento4. Affected by this vulnerability is the function AP4_StdcFileByteStream::ReadPartial of the file Ap4StdCFileByteStream.cpp of the component mp4info. The manipulation leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-213553 was assigned to this vulnerability. | |||||
| CVE-2022-3809 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| A vulnerability was found in Axiomatic Bento4 and classified as problematic. Affected by this issue is the function ParseCommandLine of the file Mp4Tag/Mp4Tag.cpp of the component mp4tag. The manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-212666 is the identifier assigned to this vulnerability. | |||||
| CVE-2022-3807 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Incomplete Fix CVE-2019-13238. The manipulation leads to resource consumption. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-212660. | |||||
| CVE-2022-41845 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_Array<AP4_ElstEntry>::EnsureCapacity in Core/Ap4Array.h. | |||||
| CVE-2022-41427 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| Bento4 v1.6.0-639 was discovered to contain a memory leak in the AP4_AvcFrameParser::Feed function in mp4mux. | |||||
| CVE-2022-3664 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 7.8 HIGH |
| A vulnerability classified as critical has been found in Axiomatic Bento4. Affected is the function AP4_BitStream::WriteBytes of the file Ap4BitStream.cpp of the component avcinfo. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-212004. | |||||
| CVE-2022-3815 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| A vulnerability, which was classified as problematic, has been found in Axiomatic Bento4. This issue affects some unknown processing of the component mp4decrypt. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-212681 was assigned to this vulnerability. | |||||
| CVE-2022-3816 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| A vulnerability, which was classified as problematic, was found in Axiomatic Bento4. Affected is an unknown function of the component mp4decrypt. The manipulation leads to memory leak. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-212682 is the identifier assigned to this vulnerability. | |||||
| CVE-2022-3812 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. Affected by this issue is the function AP4_ContainerAtom::AP4_ContainerAtom of the component mp4encrypt. The manipulation leads to memory leak. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-212678 is the identifier assigned to this vulnerability. | |||||
| CVE-2022-40438 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file. | |||||
| CVE-2022-41424 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls. | |||||
| CVE-2022-41423 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| Bento4 v1.6.0-639 was discovered to contain a segmentation violation in the mp4fragment component. | |||||
| CVE-2022-41428 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 8.8 HIGH |
| Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux. | |||||
| CVE-2022-3784 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 7.8 HIGH |
| A vulnerability classified as critical was found in Axiomatic Bento4 5e7bb34. Affected by this vulnerability is the function AP4_Mp4AudioDsiParser::ReadBits of the file Ap4Mp4AudioInfo.cpp of the component mp4hls. The manipulation leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-212563. | |||||
| CVE-2022-40775 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 5.5 MEDIUM |
| An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields. | |||||
| CVE-2022-41419 | 1 Axiosys | 1 Bento4 | 2024-02-28 | N/A | 6.5 MEDIUM |
| Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary. | |||||