Lucene search
GoogleOSV:CVE-2023-38666HistoryAug 22, 2023 - 7:16 p.m.
CVE-2023-38666
2023-08-2219:16:39
Google
osv.dev
6
bento4
segmentation violation
mp4encrypt
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
7.5
Confidence
High
EPSS
0
Percentile
12.7%
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4encrypt.
Related
cve
cve
CVE-2023-38666
2023-08-22 19:16:39
cvelist
cvelist
CVE-2023-38666
2023-08-22 00:00:00
prion
prion
Code injection
2023-08-22 19:16:00
cnvd
cnvd
Bento4 Denial of Service Vulnerability (CNVD-2023-66174)
2023-08-30 00:00:00
nvd
nvd
CVE-2023-38666
2023-08-22 19:16:39
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
7.5
Confidence
High
EPSS
0
Percentile
12.7%
Related for OSV:CVE-2023-38666