Stack Overflow Vulnerability in Bento4 by Axiomatic Systems
CVE-2026-36908
5.5MEDIUM
What is CVE-2026-36908?
A stack overflow vulnerability exists in the AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity component of Bento4 by Axiomatic Systems prior to version 1.8.9. This flaw can be exploited by attackers through the use of a specially crafted MP4 file, potentially leading to a Denial of Service condition.
