CVE-2025-8537 | Axiomatic Bento4 up to 1.6.0-641 mp4decrypt Mp4Decrypt.cpp SetDataSize allocation of resources (Issue 1037)

Inserito da Angelo Barbosa | Ago 4, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4_DataBuffer::SetDataSize of the file Mp4Decrypt.cpp of the component mp4decrypt. The manipulation leads to allocation of resources.

This vulnerability is traded as CVE-2025-8537. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-8537 | Axiomatic Bento4 up to 1.6.0-641 mp4decrypt Mp4Decrypt.cpp SetDataSize allocation of resources (Issue 1037)

Post correlati

CVE-2024-5285 | WP-FeedStats wp-affiliate-platform Plugin up to 6.5.1 on WordPress cross-site request forgery

CVE-2024-57917 | Linux Kernel up to 6.1.124/6.6.71/6.12.9/6.13-rc6 lib/kasprintf.c kvasprintf return value

CVE-2021-47659 | Linux Kernel up to 5.18.2 __drm_universal_plane_init Privilege Escalation

CVE-2023-32230 | Bosch VJD-7523 API Request unknown vulnerability