CVE-2020-23333

Опубликовано: 17 авг. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9. This can lead to a denial of service (DOS).

Ссылки

https://github.com/axiomatic-systems/Bento4/issues/507
Exploit
Patch
Third Party Advisory
https://github.com/axiomatic-systems/Bento4/issues/507
Exploit
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:axiosys:bento4:*:*:*:*:*:*:*:*

Версия до 1.6.0-635 (исключая)

EPSS

Процентиль: 60%

0.00391

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2020-23333

CVSS3: 7.5

ubuntu

больше 4 лет назад

A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9. This can lead to a denial of service (DOS).

GHSA-7p54-g429-c636

github

больше 3 лет назад

A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9. This can lead to a denial of service (DOS).

EPSS

Процентиль: 60%

0.00391

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-787