VYPR
Vendor

Bento4

Products
1
CVEs
169
Across products
169
Status
Private

Products

1

Recent CVEs

169
View all 169 CVEs →
  • CVE-2018-14532CriJul 23, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Bento4 1.5.1-624. There is a heap-based buffer over-read in AP4_Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp after a call from Mp42Hls.cpp, a related issue to CVE-2018-13846.

  • CVE-2018-14531CriJul 23, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Bento4 1.5.1-624. There is an unspecified "heap-buffer-overflow" crash in the AP4_HvccAtom class in Core/Ap4HvccAtom.cpp.

  • CVE-2018-13846CriJul 10, 2018
    risk 0.64cvss 9.8epss 0.02

    An issue has been found in Bento4 1.5.1-624. AP4_Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp has a heap-based buffer over-read after a call from Mp42Ts.cpp, a related issue to CVE-2018-14532.

  • CVE-2018-14589HigJul 24, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue has been discovered in Bento4 1.5.1-624. AP4_Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read.

  • CVE-2018-14587HigJul 24, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue has been discovered in Bento4 1.5.1-624. AP4_MemoryByteStream::WritePartial in Core/Ap4ByteStream.cpp has a buffer over-read.

  • CVE-2018-14586HigJul 24, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Mpeg2TsAudioSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp, a different vulnerability than CVE-2018-14532.

  • CVE-2018-14585HigJul 24, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue has been discovered in Bento4 1.5.1-624. AP4_BytesToUInt16BE in Core/Ap4Utils.h has a heap-based buffer over-read after a call from the AP4_Stz2Atom class.

  • CVE-2018-14584HigJul 24, 2018
    risk 0.57cvss 8.8epss 0.02

    An issue has been discovered in Bento4 1.5.1-624. AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap-based buffer over-read.

  • CVE-2017-14647HigSep 21, 2017
    risk 0.57cvss 8.8epss 0.02

    A heap-based buffer overflow was discovered in AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.

  • CVE-2017-14644HigSep 21, 2017
    risk 0.57cvss 8.8epss 0.02

    A heap-based buffer overflow was discovered in the AP4_HdlrAtom class in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.

  • CVE-2017-14639HigSep 21, 2017
    risk 0.57cvss 8.8epss 0.02

    AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect character data types, which causes a stack-based buffer underflow and out-of-bounds write, leading to denial of service (application crash) or possibly unspecified other impact.

  • CVE-2024-57510HigJan 29, 2025
    risk 0.51cvss 7.8epss 0.00

    Buffer Overflow vulnerability in Bento4 mp42avc v.3bdc891602d19789b8e8626e4a3e613a937b4d35 allows a local attacker to execute arbitrary code via the AP4_MemoryByteStream::WritePartial.

  • CVE-2024-57509HigJan 29, 2025
    risk 0.51cvss 7.8epss 0.00

    Buffer Overflow vulnerability in Bento4 mp42avc v.3bdc891602d19789b8e8626e4a3e613a937b4d35 allows a local attacker to execute arbitrary code via the AP4_File::ParseStream and related functions.

  • CVE-2018-5253HigJan 5, 2018
    risk 0.51cvss 7.8epss 0.01

    The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.

  • CVE-2017-14261HigSep 11, 2017
    risk 0.51cvss 7.8epss 0.01

    In the SDK in Bento4 1.5.0-616, the AP4_StszAtom class in Ap4StszAtom.cpp file contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file.

  • CVE-2017-14260HigSep 11, 2017
    risk 0.51cvss 7.8epss 0.01

    In the SDK in Bento4 1.5.0-616, the AP4_StssAtom class in Ap4StssAtom.cpp contains a Write Memory Access Violation vulnerability. It is possible to exploit this vulnerability and possibly execute arbitrary code by opening a crafted .MP4 file.

  • CVE-2017-14259HigSep 11, 2017
    risk 0.51cvss 7.8epss 0.01

    In the SDK in Bento4 1.5.0-616, the AP4_StscAtom class in Ap4StscAtom.cpp contains a Write Memory Access Violation vulnerability. It is possible to exploit this vulnerability and possibly execute arbitrary code by opening a crafted .MP4 file.

  • CVE-2017-14258HigSep 11, 2017
    risk 0.51cvss 7.8epss 0.01

    In the SDK in Bento4 1.5.0-616, SetItemCount in Core/Ap4StscAtom.h file contains a Write Memory Access Violation vulnerability. It is possible to exploit this vulnerability and possibly execute arbitrary code by opening a crafted .MP4 file.

  • CVE-2017-14257HigSep 11, 2017
    risk 0.51cvss 7.8epss 0.01

    In the SDK in Bento4 1.5.0-616, AP4_AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file.

  • CVE-2018-14590HigJul 24, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Processor::ProcessFragments in Core/Ap4Processor.cpp.