Home > Vulnerability Database > CVE-2022-3663

Mend.io Vulnerability Database

CVE-2022-3663

Date: October 26, 2022

A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. This issue affects the function AP4_StsdAtom of the file Ap4StsdAtom.cpp of the component MP4fragment. The manipulation leads to null pointer dereference. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-212003.

Language: C++

Severity Score

5.5

Related Resources (5)

Url: https://github.com/axiomatic-systems/Bento4/files/9817303/mp4fragment_npd_Ap4StsdAtom.cpp75.zip

Url: https://github.com/axiomatic-systems/Bento4/issues/800

Url: https://vuldb.com/?id.212003

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-3663

Url: https://www.mend.io/vulnerability-database/CVE-2022-3663

Severity Score

5.5

Weakness Type (CWE)

Improper Resource Shutdown or Release

CWE-404

NULL Pointer Dereference

CWE-476

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2022-3663

Date: October 26, 2022

Language: C++

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?