MEDIUM🇵🇱 Wersja polska

CVE-2023-33717

CVSS 5.5v3.1pub. 2023-06-02upd. 2025-01-08

mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes() had allocated memory but did not catch exceptions thrown by ReadBytes()

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  • Mp4v2 Project Mp4v2

    APP
    Mp4V2 Project
    2.1.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-33718HIGH8.8ten sam produkt

mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp

CVE-2023-29578HIGH8.8ten sam produkt

mp4v2 v2.0.0 was discovered to contain a heap buffer overflow via the mp4v2::impl::MP4StringProperty::~MP4Stri...

CVE-2023-29584HIGH8.8ten sam produkt

mp4v2 v2.0.0 was discovered to contain a heap buffer overflow via the MP4GetVideoProfileLevel function at /src...

CVE-2018-7339HIGH8.8ten sam produkt

The MP4Atom class in mp4atom.cpp in MP4v2 through 2.0.0 mishandles Entry Number validation for the MP4 Table P...

CVE-2023-33720MEDIUM6.5ten sam produkt

mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty.