Shodan
Vulnerabilities
Vulnerable Software
Axiosys:  Security Vulnerabilities
CVE-2021-40943
In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC. This can cause a denial of service (DOS).
CVSS Score
5.5
EPSS Score
0.001
Published
2022-06-28
CVE-2021-40941
In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC. This can cause a denial of service (DOS).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-27
CVE-2022-31282
Bento4 MP4Dump v1.2 was discovered to contain a segmentation violation via an unknown address at /Source/C++/Core/Ap4DataBuffer.cpp:175.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-10
CVE-2022-31285
An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-10
CVE-2022-31287
An issue was discovered in Bento4 v1.2. There is an allocation size request error in /Ap4RtpAtom.cpp.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-10
CVE-2022-29017
Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x86_64/multiarch/strlen-avx2.S.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-05-16
CVE-2022-27607
Bento4 1.6.0-639 has a heap-based buffer over-read in the AP4_HvccAtom class, a different issue than CVE-2018-14531.
CVSS Score
8.1
EPSS Score
0.005
Published
2022-03-21
CVE-2021-32265
An issue was discovered in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::WritePartial() located in Ap4ByteStream.cpp. It allows an attacker to cause code execution or information disclosure.
CVSS Score
8.8
EPSS Score
0.006
Published
2021-09-20
CVE-2018-10790
The AP4_CttsAtom class in Core/Ap4CttsAtom.cpp in Bento4 1.5.1.0 allows remote attackers to cause a denial of service (application crash), related to a memory allocation failure, as demonstrated by mp2aac.
CVSS Score
7.5
EPSS Score
0.006
Published
2021-08-25
CVE-2020-23330
An issue was discovered in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_Stz2Atom::GetSampleSize component located in /Core/Ap4Stz2Atom.cpp. It allows an attacker to cause a denial of service (DOS).
CVSS Score
7.5
EPSS Score
0.003
Published
2021-08-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved