CVE-2026-5235 | Axiomatic Bento4 up to 1.6.0-641 MP4 File Parser Ap4Dac4Atom.cpp AP4_BitReader::ReadCache heap-based overflow (Issue 1058)

A vulnerability has been found in Axiomatic Bento4 up to 1.6.0-641 and classified as critical. This impacts the function AP4_BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipulation causes heap-based buffer overflow.

This vulnerability is registered as CVE-2026-5235. The attack needs to be launched locally. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More