CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-14543

There exists one NULL pointer dereference vulnerability in AP4_JsonInspector::AddField in Ap4Atom.cpp in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp4dump.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.2%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://github.com/axiomatic-systems/Bento4/issues/292
https://github.com/axiomatic-systems/Bento4/issues/292

Products affected by CVE-2018-14543

Axiosys » Bento4 » Version: 1.5.1-624

cpe:2.3:a:axiosys:bento4:1.5.1-624

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-14543

Products

Pricing

Contact Us