CVE-2026-36908

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 26, 2026

Vendor unknown

Description

A stack overflow in the AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.

References

https://github.com/Aleksoid1978/MPC-BE/issues/1005
https://github.com/axiomatic-systems/Bento4/issues/842