CVE-2026-36908
Severity CVSS v4.0:
Pending analysis
Type:
CWE-121
Stack-based Buffer Overflow
Publication date:
26/06/2026
Last modified:
29/06/2026
Description
A stack overflow in the AP4_Array::EnsureCapacity component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM



