Known Vulnerabilities for Bento4 by Axiosys
Listed below are 10 of the newest known vulnerabilities associated with "Bento4" by "Axiosys".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-5236 | A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4_BitReader::SkipBits of the f... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2026-5235 | A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache of the... | Not Provided | 2026-03-31 | 2026-04-01 |
| CVE-2021-40943 | In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Des... | 5.5 - MEDIUM | 2022-06-28 | 2022-07-07 |
| CVE-2021-40941 | In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array |
7.5 - HIGH | 2022-06-27 | 2022-07-07 |
| CVE-2021-35307 | An issue was discovered in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the AP4_DescriptorFinder::Test com... | 6.5 - MEDIUM | 2021-08-05 | 2021-08-12 |
| CVE-2021-35306 | An issue was discovered in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the function AP4_StszAtom::WriteFi... | 6.5 - MEDIUM | 2021-08-05 | 2021-08-12 |
| CVE-2021-32265 | An issue was discovered in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::W... | 8.8 - HIGH | 2021-09-20 | 2021-09-29 |
| CVE-2020-19721 | A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running m... | 6.5 - MEDIUM | 2021-07-13 | 2022-10-26 |
| CVE-2020-19720 | An unhandled memory allocation failure in Core/AP4IkmsAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading ... | 6.5 - MEDIUM | 2021-07-13 | 2021-07-15 |
| CVE-2020-19719 | A buffer overflow vulnerability in Ap4ElstAtom.cpp of Bento 1.5.1-628 leads to a denial of service (DOS). | 6.5 - MEDIUM | 2021-07-13 | 2021-07-15 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Axiosys | Bento4 | 1.6.0-637 | All | All | All |
| Application | Axiosys | Bento4 | 1.6.0-636 | All | All | All |
| Application | Axiosys | Bento4 | 1.6.0-635 | All | All | All |
| Application | Axiosys | Bento4 | 1.6.0-634 | All | All | All |
| Application | Axiosys | Bento4 | 1.6.0-633 | All | All | All |
| Application | Axiosys | Bento4 | 1.6.0-630 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1.0 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-629 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-628 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-627 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-624 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-623 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-622 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-621 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.1-620 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.0-619 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.0-618 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.0-617 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.0-616 | All | All | All |
| Application | Axiosys | Bento4 | 1.5.0-615 | All | All | All |