exploitDog

CVE-2023-29576

Опубликовано: 11 апр. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_TrunAtom::SetDataOffset(int) function in Ap4TrunAtom.h.

Ссылки

https://github.com/axiomatic-systems/Bento4/issues/844
Exploit
Issue Tracking
https://github.com/z1r00/fuzz_vuln/blob/main/Bento4/mp4decrypt/sigv/readme.md
Exploit
Issue Tracking
Third Party Advisory
https://github.com/axiomatic-systems/Bento4/issues/844
Exploit
Issue Tracking
https://github.com/z1r00/fuzz_vuln/blob/main/Bento4/mp4decrypt/sigv/readme.md
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:axiosys:bento4:1.6.0-639:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00056

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-125

CWE-125

Связанные уязвимости

GHSA-5w6v-5f49-qrhc

CVSS3: 5.5

github

почти 3 года назад

Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_TrunAtom::SetDataOffset(int) function in Ap4TrunAtom.h.

EPSS

Процентиль: 18%

0.00056

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-125

CWE-125