Vulnerabilities > Axiosys > Bento4 > 1.5.1.627

DATE CVE VULNERABILITY TITLE RISK
2021-08-17 CVE-2020-23333 Out-of-bounds Write vulnerability in Axiosys Bento4
A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9.
network
low complexity
axiosys CWE-787
7.5
2021-08-17 CVE-2020-23334 Out-of-bounds Write vulnerability in Axiosys Bento4
A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.
network
low complexity
axiosys CWE-787
7.5
2021-08-05 CVE-2021-35306 NULL Pointer Dereference vulnerability in Axiosys Bento4
An issue was discovered in Bento4 through v1.6.0-636.
network
low complexity
axiosys CWE-476
6.5
2021-08-05 CVE-2021-35307 NULL Pointer Dereference vulnerability in Axiosys Bento4
An issue was discovered in Bento4 through v1.6.0-636.
network
low complexity
axiosys CWE-476
6.5
2021-04-21 CVE-2020-23912 NULL Pointer Dereference vulnerability in Axiosys Bento4
An issue was discovered in Bento4 through v1.6.0-637.
local
low complexity
axiosys CWE-476
5.5
2019-07-18 CVE-2019-13959 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1627
In Bento4 1.5.1-627, AP4_DataBuffer::SetDataSize does not handle reallocation failures, leading to a memory copy into a NULL pointer.
network
low complexity
axiosys CWE-476
6.5
2019-02-10 CVE-2019-7699 Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.1627
A heap-based buffer over-read occurs in AP4_BitStream::WriteBytes in Codecs/Ap4BitStream.cpp in Bento4 v1.5.1-627.
network
low complexity
axiosys CWE-125
6.5
2019-02-10 CVE-2019-7698 Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.5.1627
An issue was discovered in AP4_Array<AP4_CttsTableEntry>::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627.
network
low complexity
axiosys CWE-770
6.5
2019-02-10 CVE-2019-7697 Reachable Assertion vulnerability in Axiosys Bento4 1.5.1627
An issue was discovered in Bento4 v1.5.1-627.
network
low complexity
axiosys CWE-617
6.5
2019-01-11 CVE-2019-6132 Memory Leak vulnerability in Axiosys Bento4 1.5.1627
An issue was discovered in Bento4 v1.5.1-627.
network
low complexity
axiosys CWE-401
7.5