Vulnerabilities > Axiosys

DATE CVE VULNERABILITY TITLE RISK
2025-01-30 CVE-2025-0870 Heap-based Buffer Overflow vulnerability in Axiosys Bento4
A vulnerability was found in Axiomatic Bento4 up to 1.6.0-641.
network
high complexity
axiosys CWE-122
5.9
5.9
2025-01-27 CVE-2025-0753 Heap-based Buffer Overflow vulnerability in Axiosys Bento4
A vulnerability classified as critical was found in Axiomatic Bento4 up to 1.6.0.
network
low complexity
axiosys CWE-122
6.5
6.5
2025-01-27 CVE-2025-0751 Heap-based Buffer Overflow vulnerability in Axiosys Bento4
A vulnerability classified as critical has been found in Axiomatic Bento4 up to 1.6.0.
network
low complexity
axiosys CWE-122
6.5
6.5
2024-04-02 CVE-2024-31004 Unspecified vulnerability in Axiosys Bento4 1.6.0641
An issue in Bento4 Bento v.1.6.0-641 allows a remote attacker to execute arbitrary code via the Ap4StsdAtom.cpp,AP4_StsdAtom::AP4_StsdAtom,mp4fragment.
network
low complexity
axiosys
critical
 9.8
9.8
2024-02-29 CVE-2024-24155 Memory Leak vulnerability in Axiosys Bento4 1.5.1628
Bento4 v1.5.1-628 contains a Memory leak on AP4_Movie::AP4_Movie, parsing tracks and added into m_Tracks list, but mp42aac cannot correctly delete when we got an no audio track found error.
network
low complexity
axiosys CWE-401
6.5
6.5
2024-02-09 CVE-2024-25451 Resource Exhaustion vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via the AP4_DataBuffer::ReallocateBuffer() function.
network
low complexity
axiosys CWE-400
6.5
6.5
2024-02-09 CVE-2024-25452 Resource Exhaustion vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via the AP4_UrlAtom::AP4_UrlAtom() function.
local
low complexity
axiosys CWE-400
5.5
5.5
2024-02-09 CVE-2024-25453 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference via the AP4_StszAtom::GetSampleSize() function.
local
low complexity
axiosys CWE-476
5.5
5.5
2024-02-09 CVE-2024-25454 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.6.0640
Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference via the AP4_DescriptorFinder::Test() function.
local
low complexity
axiosys CWE-476
5.5
5.5
2023-08-22 CVE-2023-38666 Unspecified vulnerability in Axiosys Bento4 1.6.0639
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4encrypt.
local
low complexity
axiosys
5.5
5.5