Axiomatic Bento4 mp4edit ସେବା ପ୍ରତ୍ୟାଖ୍ୟାନ

ଏଣ୍ଟ୍ରିଇତିହାସମିଶ୍ରଣ କରନ୍ତୁjsonxmlCTI

Rakkoon nageenyaa kan ସମସ୍ୟାଜନକ jedhamuun beekamu Axiomatic Bento4 keessatti argameera. Kan miidhamte is hojii hin beekamne kutaa mp4edit keessa. Hojii jijjiirraa gara ସେବା ପ୍ରତ୍ୟାଖ୍ୟାନ geessa. CWE fayyadamuun rakkoo ibsuun gara CWE-401 geessa. Dadhabbii kana yeroo 11/01/2022 maxxanfameera akka 792. Odeeffannoon kun buufachuuf github.com irratti qoodameera. Dogoggorri kun akka CVE-2022-3813tti beekama. Yaaliin weeraraa fageenya irraa jalqabamuu ni danda'a. Faayidaaleen teeknikaa hin jiru. Waliigalatti, meeshaa balaa kana fayyadamuuf jiru. Qorannoo miidhaa (exploit) uummataaf ifoomameera fi fayyadamamuu danda'a. Amma, gatii ammee exploit might be approx. USD $0-$5k ta'uu danda'a. Akka ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee ibsameera. Carraa exploit kana github.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatii daldalaa dhoksaa tilmaamame $0-$5k ta'ee ture. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

2 ଆଡାପ୍ଟେସନ୍ · 44 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 11/01/2022 11:04 PM	ଅଦ୍ୟତନ 1/1 11/30/2022 10:23 PM
software_vendor	Axiomatic	Axiomatic
software_name	Bento4	Bento4
software_component	mp4edit	mp4edit
vulnerability_cwe	CWE-401 (ସେବା ପ୍ରତ୍ୟାଖ୍ୟାନ)	CWE-401 (ସେବା ପ୍ରତ୍ୟାଖ୍ୟାନ)
vulnerability_risk	1	1
cvss3_vuldb_av	N	N
cvss3_vuldb_ac	L	L
cvss3_vuldb_pr	N	N
cvss3_vuldb_ui	R	R
cvss3_vuldb_s	U	U
cvss3_vuldb_c	N	N
cvss3_vuldb_i	N	N
cvss3_vuldb_a	L	L
cvss3_vuldb_e	P	P
cvss3_vuldb_rc	R	R
advisory_identifier	792	792
advisory_url	https://github.com/axiomatic-systems/Bento4/issues/792	https://github.com/axiomatic-systems/Bento4/issues/792
exploit_availability	1	1
exploit_publicity	1	1
exploit_url	https://github.com/axiomatic-systems/Bento4/files/9726974/POC_mp4edit_728838793.zip	https://github.com/axiomatic-systems/Bento4/files/9726974/POC_mp4edit_728838793.zip
source_cve	CVE-2022-3813	CVE-2022-3813
cna_responsible	VulDB	VulDB
advisory_date	1667257200 (11/01/2022)	1667257200 (11/01/2022)
software_type	Multimedia Player Software	Multimedia Player Software
cvss2_vuldb_av	N	N
cvss2_vuldb_ac	L	L
cvss2_vuldb_au	N	N
cvss2_vuldb_ci	N	N
cvss2_vuldb_ii	N	N
cvss2_vuldb_ai	P	P
cvss2_vuldb_e	POC	POC
cvss2_vuldb_rc	UR	UR
cvss2_vuldb_rl	ND	ND
cvss3_vuldb_rl	X	X
cvss2_vuldb_basescore	5.0	5.0
cvss2_vuldb_tempscore	4.3	4.3
cvss3_vuldb_basescore	4.3	4.3
cvss3_vuldb_tempscore	3.9	3.9
cvss3_meta_basescore	4.3	4.3
cvss3_meta_tempscore	3.9	3.9
price_0day	$0-$5k	$0-$5k
cve_assigned		1667257200 (11/01/2022)
cve_nvd_summary		A vulnerability classified as problematic has been found in Axiomatic Bento4. This affects an unknown part of the component mp4edit. The manipulation leads to memory leak. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-212679.

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!