Vulnerabilities > CVE-2020-19721 - Out-of-bounds Write vulnerability in Axiosys Bento4 1.5.1628

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

axiosys

CWE-787

NVD

Published: 2021-07-13

Updated: 2022-10-26

Summary

A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running mp42aac, leading to system crashes and a denial of service (DOS).

Vulnerable Configurations

Part	Description	Count
Application	Axiosys Axiosys Bento4 1.5.1-628	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/axiomatic-systems/Bento4/issues/415
https://cwe.mitre.org/data/definitions/122.html