cpe:/a:axiosys:bento4:1.5.1.0 CVE-2019-17454 2019-10-10T13:15:17.907-04:00 2019-10-11T12:08:19.750-04:00 4.3 NETWORK MEDIUM NONE NONE NONE PARTIAL http://nvd.nist.gov 2019-10-10T20:13:17.140-04:00 MISC https://github.com/axiomatic-systems/Bento4/issues/435 Bento4 1.5.1.0 has a NULL pointer dereference in AP4_Descriptor::GetTag in Core/Ap4Descriptor.h, related to AP4_StsdAtom::GetSampleDescription in Core/Ap4StsdAtom.cpp, as demonstrated by mp4info.