Vulnerabilities > Axiosys > Bento4 > 1.6.0.638

DATE CVE VULNERABILITY TITLE RISK
2022-12-17 CVE-2022-4584 Heap-based Buffer Overflow vulnerability in Axiosys Bento4
A vulnerability was found in Axiomatic Bento4 up to 1.6.0-639.
network
low complexity
axiosys CWE-122
8.8
8.8
2022-11-02 CVE-2022-3809 Improper Resource Shutdown or Release vulnerability in Axiosys Bento4
A vulnerability was found in Axiomatic Bento4 and classified as problematic.
network
low complexity
axiosys CWE-404
6.5
6.5
2022-11-02 CVE-2022-3810 Improper Resource Shutdown or Release vulnerability in Axiosys Bento4
A vulnerability was found in Axiomatic Bento4.
network
low complexity
axiosys CWE-404
6.5
6.5
2022-09-30 CVE-2022-41841 NULL Pointer Dereference vulnerability in Axiosys Bento4
An issue was discovered in Bento4 through 1.6.0-639.
local
low complexity
axiosys CWE-476
5.5
5.5
2022-06-28 CVE-2021-40943 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.6.0638
In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC.
network
axiosys CWE-476
4.3
4.3
2022-06-27 CVE-2021-40941 Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.6.0638
In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC.
network
low complexity
axiosys CWE-770
5.0
5.0