A vulnerability was found in Axiomatic Bento4. It has been classified as problematic. This affects the function AP4_File::AP4_File of the file Mp42Hevc.cpp of the component mp42hevc. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-212667.
References
Link | Resource |
---|---|
https://github.com/axiomatic-systems/Bento4/files/9653209/poc_Bento4.zip | Exploit Third Party Advisory |
https://github.com/axiomatic-systems/Bento4/issues/779 | Exploit Issue Tracking Third Party Advisory |
https://vuldb.com/?id.212667 | Patch Third Party Advisory |
Configurations
History
03 Nov 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:axiosys:bento4:*:*:*:*:*:*:*:* | |
First Time |
Axiosys bento4
Axiosys |
|
CWE | CWE-404 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | (MISC) https://github.com/axiomatic-systems/Bento4/files/9653209/poc_Bento4.zip - Exploit, Third Party Advisory | |
References | (MISC) https://vuldb.com/?id.212667 - Patch, Third Party Advisory | |
References | (MISC) https://github.com/axiomatic-systems/Bento4/issues/779 - Exploit, Issue Tracking, Third Party Advisory |
02 Nov 2022, 14:52
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-02 13:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-3810
Mitre link : CVE-2022-3810
CVE.ORG link : CVE-2022-3810
JSON object : View
Products Affected
axiosys
- bento4
CWE
CWE-404
Improper Resource Shutdown or Release