Null Pointer Reference Denial of Service Vulnerability in Bento4 1.6.0-638

CVE-2021-40943 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC. This can cause a denial of service (DOS).

Learn more about our Web Application Penetration Testing UK.