Vulnerabilities > Axiosys

DATE CVE VULNERABILITY TITLE RISK
2024-02-29 CVE-2024-24155 Memory Leak vulnerability in Axiosys Bento4 1.5.1628
Bento4 v1.5.1-628 contains a Memory leak on AP4_Movie::AP4_Movie, parsing tracks and added into m_Tracks list, but mp42aac cannot correctly delete when we got an no audio track found error.
network
low complexity
axiosys CWE-401
6.5
6.5
2024-02-09 CVE-2024-25451 Resource Exhaustion vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via the AP4_DataBuffer::ReallocateBuffer() function.
network
low complexity
axiosys CWE-400
6.5
6.5
2024-02-09 CVE-2024-25452 Resource Exhaustion vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via the AP4_UrlAtom::AP4_UrlAtom() function.
local
low complexity
axiosys CWE-400
5.5
5.5
2024-02-09 CVE-2024-25453 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference via the AP4_StszAtom::GetSampleSize() function.
local
low complexity
axiosys CWE-476
5.5
5.5
2024-02-09 CVE-2024-25454 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference via the AP4_DescriptorFinder::Test() function.
local
low complexity
axiosys CWE-476
5.5
5.5
2023-08-22 CVE-2023-38666 Unspecified vulnerability in Axiosys Bento4 1.6.0639
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4encrypt.
local
low complexity
axiosys
5.5
5.5
2023-04-21 CVE-2023-29575 Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.6.0639
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42aac component.
local
low complexity
axiosys CWE-770
5.5
5.5
2023-04-13 CVE-2023-29573 Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.6.0639
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp4info component.
local
low complexity
axiosys CWE-770
5.5
5.5
2023-04-12 CVE-2023-29574 Unspecified vulnerability in Axiosys Bento4 1.6.0639
Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42avc component.
local
low complexity
axiosys
5.5
5.5
2023-04-11 CVE-2023-29576 Out-of-bounds Read vulnerability in Axiosys Bento4 1.6.0639
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_TrunAtom::SetDataOffset(int) function in Ap4TrunAtom.h.
local
low complexity
axiosys CWE-125
5.5
5.5