A vulnerability has been found in Axiomatic Bento4 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component mp4mux. The manipulation leads to memory leak. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-212683.
References
Link | Resource |
---|---|
https://github.com/axiomatic-systems/Bento4/files/9727057/POC_mp4mux_1729452038.zip | Exploit Third Party Advisory |
https://github.com/axiomatic-systems/Bento4/issues/792 | Issue Tracking Third Party Advisory |
https://vuldb.com/?id.212683 | Third Party Advisory |
Configurations
History
02 Nov 2022, 18:54
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | (N/A) https://github.com/axiomatic-systems/Bento4/issues/792 - Issue Tracking, Third Party Advisory | |
References | (N/A) https://vuldb.com/?id.212683 - Third Party Advisory | |
References | (N/A) https://github.com/axiomatic-systems/Bento4/files/9727057/POC_mp4mux_1729452038.zip - Exploit, Third Party Advisory | |
CPE | cpe:2.3:a:axiosys:bento4:1.6.0-639:*:*:*:*:*:*:* |
01 Nov 2022, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-01 22:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-3817
Mitre link : CVE-2022-3817
CVE.ORG link : CVE-2022-3817
JSON object : View
Products Affected
axiosys
- bento4
CWE
CWE-404
Improper Resource Shutdown or Release