CVE-2026-5235 | Axiomatic Bento4 up to 1.6.0-641 MP4 File Parser Ap4Dac4Atom.cpp AP4_BitReader::ReadCache heap-based overflow (Issue 1058)

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability has been found in Axiomatic Bento4 up to 1.6.0-641 and classified as critical. This impacts the function AP4_BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipulation causes heap-based buffer overflow.

This vulnerability is registered as CVE-2026-5235. The attack needs to be launched locally. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-5235 | Axiomatic Bento4 up to 1.6.0-641 MP4 File Parser Ap4Dac4Atom.cpp AP4_BitReader::ReadCache heap-based overflow (Issue 1058)

Post correlati

CVE-2023-6272 | Theme My Login 2FA Plugin up to 1.1 on WordPress excessive authentication

CVE-2024-10098 | ApplyOnline Plugin up to 2.6.2 on WordPress authorization

CVE-2025-0457 | NetVision Information airPASS prior 2.9.0.241231/3.0.0.241231 os command injection

CVE-2024-10365 | posimyththemes Plus Addons for Elementor Plugin up to 6.0.3 on WordPress tp_carousel_anything.php render information disclosure