Lucene search
GoogleOSV:CVE-2022-40738HistorySep 15, 2022 - 4:15 a.m.
CVE-2022-40738
2022-09-1504:15:24
Google
osv.dev
3
bento4
null pointer dereference
ap4_descriptorlistwriter
ap4_esdescriptor
ap4_expandable
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
30.9%
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.
Related
cvelist
cvelist
CVE-2022-40738
2022-09-15 03:23:01
nvd
nvd
CVE-2022-40738
2022-09-15 04:15:24
prion
prion
Null pointer dereference
2022-09-15 04:15:00
cve
cve
CVE-2022-40738
2022-09-15 04:15:24
ubuntucve
ubuntucve
CVE-2022-40738
2022-09-15 00:00:00
alpinelinux
alpinelinux
CVE-2022-40738
2022-09-15 04:15:24
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
30.9%
Related for OSV:CVE-2022-40738