Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Axiosys Subscribe
Filtered by product Bento4
Total 127 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-12475 1 Axiosys 1 Bento4 2018-09-19 4.3 MEDIUM 5.5 MEDIUM
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
CVE-2018-14544 1 Axiosys 1 Bento4 2018-09-19 4.3 MEDIUM 5.5 MEDIUM
There exists one invalid memory read bug in AP4_SampleDescription::GetFormat() in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts.
CVE-2017-14260 1 Axiosys 1 Bento4 2018-09-19 6.8 MEDIUM 7.8 HIGH
In the SDK in Bento4 1.5.0-616, the AP4_StssAtom class in Ap4StssAtom.cpp contains a Write Memory Access Violation vulnerability. It is possible to exploit this vulnerability and possibly execute arbitrary code by opening a crafted .MP4 file.
CVE-2018-14586 1 Axiosys 1 Bento4 2018-09-18 6.8 MEDIUM 8.8 HIGH
An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Mpeg2TsAudioSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp, a different vulnerability than CVE-2018-14532.
CVE-2018-14590 1 Axiosys 1 Bento4 2018-09-07 5.0 MEDIUM 7.5 HIGH
An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Processor::ProcessFragments in Core/Ap4Processor.cpp.
CVE-2018-13848 1 Axiosys 1 Bento4 2018-08-30 5.0 MEDIUM 7.5 HIGH
An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4_StszAtom::GetSampleSize in Core/Ap4StszAtom.cpp.
CVE-2018-13847 1 Axiosys 1 Bento4 2018-08-30 5.0 MEDIUM 7.5 HIGH
An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4_StcoAtom::AdjustChunkOffsets in Core/Ap4StcoAtom.cpp.