Xiaotong Jiao

Researcher fromNCNIPC of China
#19470of 53,633
13.6Total CVSS
Vulnerabilities · 2
Medium
1
High
1
PT-2022-25515
5.5
2022-09-16
Jasper · Jasper · CVE-2022-40755
**Name of the Vulnerable Software and Affected Versions** JasPer version 3.0.6 **Description** The issue allows for denial of service via a reachable assertion in the function inttobits in libjasper/base/jas image.c. **Recommendations** For JasPer version 3.0.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2022-18511
8.1
2022-03-21
Bento4 · Bento4 · CVE-2022-27607
**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.6.0-639 **Description** A heap-based buffer over-read issue exists in the AP4 HvccAtom class. **Recommendations** For Bento4 version 1.6.0-639, at the moment, there is no information about a newer version that contains a fix for this issue.