Vulnerabilities > Axiosys > Bento4 > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-08-17 CVE-2020-23333 Out-of-bounds Write vulnerability in Axiosys Bento4
A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9.
network
low complexity
axiosys CWE-787
5.0
5.0
2021-08-17 CVE-2020-23334 Out-of-bounds Write vulnerability in Axiosys Bento4
A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.
network
low complexity
axiosys CWE-787
5.0
5.0
2021-08-13 CVE-2020-21066 Out-of-bounds Write vulnerability in Axiosys Bento4 1.5.1.0
An issue was discovered in Bento4 v1.5.1.0.
network
axiosys CWE-787
4.3
4.3
2021-08-05 CVE-2021-35306 NULL Pointer Dereference vulnerability in Axiosys Bento4
An issue was discovered in Bento4 through v1.6.0-636.
network
axiosys CWE-476
4.3
4.3
2021-08-05 CVE-2021-35307 NULL Pointer Dereference vulnerability in Axiosys Bento4
An issue was discovered in Bento4 through v1.6.0-636.
network
axiosys CWE-476
4.3
4.3
2021-07-13 CVE-2020-19717 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1628
An unhandled memory allocation failure in Core/Ap48bdlAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).
network
axiosys CWE-476
4.3
4.3
2021-07-13 CVE-2020-19718 NULL Pointer Dereference vulnerability in Axiosys Bento4 1.5.1628
An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).
network
axiosys CWE-476
4.3
4.3
2021-07-13 CVE-2020-19719 Classic Buffer Overflow vulnerability in Axiosys Bento4 1.5.1628
A buffer overflow vulnerability in Ap4ElstAtom.cpp of Bento 1.5.1-628 leads to a denial of service (DOS).
network
axiosys CWE-120
4.3
4.3
2021-07-13 CVE-2020-19720 Classic Buffer Overflow vulnerability in Axiosys Bento4 1.5.1628
An unhandled memory allocation failure in Core/AP4IkmsAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).
network
axiosys CWE-120
4.3
4.3
2021-07-13 CVE-2020-19721 Out-of-bounds Write vulnerability in Axiosys Bento4 1.5.1628
A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running mp42aac, leading to system crashes and a denial of service (DOS).
network
low complexity
axiosys CWE-787
6.5
6.5