Vulnerabilities > Axiosys > Bento4 > 1.5.1.0

DATE CVE VULNERABILITY TITLE RISK
2019-10-10 CVE-2019-17453 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1.0
Bento4 1.5.1.0 has a NULL pointer dereference in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, related to AP4_IodsAtom::WriteFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4encrypt or mp4compact.
network
axiosys CWE-476
4.3
4.3
2019-10-10 CVE-2019-17452 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1.0
Bento4 1.5.1.0 has a NULL pointer dereference in AP4_DescriptorListInspector::Action in Core/Ap4Descriptor.h, related to AP4_IodsAtom::InspectFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4dump.
network
axiosys CWE-476
4.3
4.3
2019-08-14 CVE-2019-15050 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1.0
An issue was discovered in Bento4 1.5.1.0.
network
axiosys CWE-125
6.8
6.8
2019-08-14 CVE-2019-15049 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1.0
An issue was discovered in Bento4 1.5.1.0.
network
axiosys CWE-125
6.8
6.8
2019-08-14 CVE-2019-15048 Out-of-bounds Write vulnerability in Axiosys Bento4 1.5.1.0
An issue was discovered in Bento4 1.5.1.0.
network
axiosys CWE-787
6.8
6.8
2019-08-14 CVE-2019-15047 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1.0
An issue was discovered in Bento4 1.5.1.0.
network
axiosys CWE-125
6.8
6.8
2019-07-04 CVE-2019-13238 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1.0
An issue was discovered in Bento4 1.5.1.0.
network
low complexity
axiosys CWE-476
5.0
5.0
2018-01-05 CVE-2018-5253 Infinite Loop vulnerability in Axiosys Bento4 1.5.1.0
The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.
network
axiosys CWE-835
6.8
6.8