CVE-2024-25451

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Feb 9, 2024

Updated: Feb 12, 2024

CWE ID 400

Summary

CVE-2024-25451 is a newly discovered vulnerability affecting Bento4 version 1.6.0-640. This issue arises due to an out-of-memory bug located in the AP4_DataBuffer::ReallocateBuffer() function. If exploited, this bug could result in denial of service or potentially more severe consequences, such as arbitrary code execution. Impacted users are encouraged to upgrade to the latest version of Bento4 as soon as possible to mitigate this risk. The exact details of the exploitation process and potential impact are currently under investigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ubjh3l
https://www.cve.org/CVERecord?id=CVE-2024-25451
https://nvd.nist.gov/vuln/detail/CVE-2024-25451

Back to Vulnerability Database

CVE-2024-25451

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations