exploitDog

CVE-2022-40738

Опубликовано: 15 сент. 2022

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.

Ссылки

https://github.com/axiomatic-systems/Bento4/issues/756
Exploit
Issue Tracking
Third Party Advisory
https://github.com/axiomatic-systems/Bento4/issues/756
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:axiosys:bento4:*:*:*:*:*:*:*:*

Версия до 1.6.0-639 (включая)

EPSS

Процентиль: 61%

0.00414

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

CVE-2022-40738

CVSS3: 6.5

ubuntu

больше 3 лет назад

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.

GHSA-rmhm-v9m7-265m

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.

EPSS

Процентиль: 61%

0.00414

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-476