Shodan
Vulnerabilities
Vulnerable Software
Axiosys:  Security Vulnerabilities
CVE-2022-41846
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-09-30
CVE-2022-41847
An issue was discovered in Bento4 1.6.0-639. A memory leak exists in AP4_StdcFileByteStream::Create(AP4_FileByteStream*, char const*, AP4_FileByteStream::Mode, AP4_ByteStream*&) in System/StdC/Ap4StdCFileByteStream.cpp.
CVSS Score
5.5
EPSS Score
0.003
Published
2022-09-30
CVE-2022-40774
An issue was discovered in Bento4 through 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-09-18
CVE-2022-40775
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-09-18
CVE-2022-40736
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in AP4_CttsAtom::Create in Core/Ap4CttsAtom.cpp.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-09-15
CVE-2022-40737
An issue was discovered in Bento4 through 1.6.0-639. A buffer over-read exists in the function AP4_StdcFileByteStream::WritePartial located in System/StdC/Ap4StdCFileByteStream.cpp, called from AP4_ByteStream::Write and AP4_HdlrAtom::WriteFields.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-09-15
CVE-2022-40738
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-09-15
CVE-2022-40438
Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-09-14
CVE-2022-40439
An memory leak issue was discovered in AP4_StdcFileByteStream::Create in mp42ts in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-09-14
CVE-2022-35165
An issue in AP4_SgpdAtom::AP4_SgpdAtom() of Bento4-1.6.0-639 allows attackers to cause a Denial of Service (DoS) via a crafted mp4 input.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-08-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved