CVE-2020-23912

Published April 21st, 2021

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

An issue was discovered in Bento4 through v1.6.0-637. A NULL pointer dereference exists in the function AP4_StszAtom::GetSampleSize() located in Ap4StszAtom.cpp. It allows an attacker to cause Denial of Service.

axiomatic-systems/Bento4

Full-featured MP4 format, MPEG DASH, HLS, CMAF SDK and tools

GitHub

2.45K