Vulnerabilities > Axiosys > Bento4 > 1.5.1.624

DATE CVE VULNERABILITY TITLE RISK
2018-07-23 CVE-2018-14543 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1624
There exists one NULL pointer dereference vulnerability in AP4_JsonInspector::AddField in Ap4Atom.cpp in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file.
network
axiosys CWE-476
4.3
4.3
2018-07-23 CVE-2018-14532 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1624
An issue was discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-125
7.5
7.5
2018-07-23 CVE-2018-14531 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axiosys Bento4 1.5.1624
An issue was discovered in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-119
7.5
7.5
2018-07-20 CVE-2018-14445 Infinite Loop vulnerability in Axiosys Bento4 1.5.1624
In Bento4 v1.5.1-624, AP4_File::ParseStream in Ap4File.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted MP4 file.
network
axiosys CWE-835
4.3
4.3
2018-07-10 CVE-2018-13848 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axiosys Bento4 1.5.1624
An issue has been found in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-119
5.0
5.0
2018-07-10 CVE-2018-13847 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Axiosys Bento4 1.5.1624
An issue has been found in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-119
5.0
5.0
2018-07-10 CVE-2018-13846 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1624
An issue has been found in Bento4 1.5.1-624.
network
low complexity
axiosys CWE-125
7.5
7.5