CVE-2022-3814: Axiomatic Bento4 mp4decrypt memory leak
First published: Tue Nov 01 2022(Updated: )
A vulnerability classified as problematic was found in Axiomatic Bento4. This vulnerability affects unknown code of the component mp4decrypt. The manipulation leads to memory leak. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-212680.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Axiosys Bento4 | =1.6.0-639 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2022-3814.
What component is affected by this vulnerability?
The component affected by this vulnerability is mp4decrypt.
What is the severity rating of this vulnerability?
The severity rating of this vulnerability is medium with a CVSS score of 6.5.
Is there a known exploit for this vulnerability?
Yes, an exploit for this vulnerability has been disclosed to the public.
How can I fix this vulnerability?
To fix this vulnerability, update Axiomatic Bento4 to a version that is not affected by the vulnerability.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/severity
- agent/last-modified-date
- agent/title
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/axiosys
- canonical/axiosys bento4
- version/axiosys bento4/1.6.0-639