CVE-2025-0751

Medium CVSS: 6.9

A vulnerability classified as critical has been found in Axiomatic Bento4 up to 1.6.0. This affects the function AP4_BitReader::ReadBits of the component mp42aac. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Axiosys

Product

Bento4

CWE

CWE-119

Yayın Tarihi

2025-01-27 20:15:34

Güncelleme

2025-02-28 22:20:41

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Bento4 MEDIUM Axiosys 2025

Referanslar

https://github.com/axiomatic-systems/Bento4/issues/991 https://github.com/user-attachments/files/18434657/seeds.zip https://vuldb.com/?ctiid.293517 https://vuldb.com/?id.293517 https://vuldb.com/?submit.483315

Benzer Kayıtlar

Medium

CVE-2025-8537

A vulnerability, which was classified as problematic, was found in Axiomatic Bento4 up to 1.6.0-641. Affected is the fun…

Medium

CVE-2025-25942

An issue in Bento4 v1.6.0-641 allows an attacker to obtain sensitive information via the the mp4fragment tool when proce…

High

CVE-2025-25943

Buffer Overflow vulnerability in Bento4 v.1.6.0-641 allows a local attacker to execute arbitrary code via the AP4_Stz2At…

High

CVE-2025-25944

Buffer Overflow vulnerability in Bento4 v.1.6.0-641 allows a local attacker to execute arbitrary code via the Ap4RtpAtom…

Medium

CVE-2025-25945

An issue in Bento4 v1.6.0-641 allows an attacker to obtain sensitive information via the the Mp4Fragment.cpp and in AP4_…

Medium

CVE-2025-25946

An issue in Bento4 v1.6.0-641 allows an attacker to cause a memory leak via Ap4Marlin.cpp and Ap4Processor.cpp, specific…