Vulnerabilities > Bento4 > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-09-11 CVE-2017-14259 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Bento4 1.5.0616
In the SDK in Bento4 1.5.0-616, the AP4_StscAtom class in Ap4StscAtom.cpp contains a Write Memory Access Violation vulnerability.
network
bento4 CWE-119
6.8
2017-09-11 CVE-2017-14258 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Bento4 1.5.0616
In the SDK in Bento4 1.5.0-616, SetItemCount in Core/Ap4StscAtom.h file contains a Write Memory Access Violation vulnerability.
network
bento4 CWE-119
6.8
2017-09-11 CVE-2017-14257 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Bento4 1.5.0616
In the SDK in Bento4 1.5.0-616, AP4_AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability.
network
bento4 CWE-119
6.8
2017-09-06 CVE-2017-12476 NULL Pointer Dereference vulnerability in Bento4
The AP4_AvccAtom::InspectFields function in Core/Ap4AvccAtom.cpp in Bento4 mp4dump before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
network
bento4 CWE-476
4.3
2017-09-06 CVE-2017-12474 NULL Pointer Dereference vulnerability in Bento4
The AP4_AtomSampleTable::GetSample function in Core/Ap4AtomSampleTable.cpp in Bento4 mp42ts before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
network
bento4 CWE-476
4.3