CVE-2026-36908

{"id": "CVE-2026-36908", "cveTags": [], "metrics": {}, "affected": [{"source": "cve@mitre.org", "affectedData": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}]}], "published": "2026-06-26T22:16:31.747", "references": [{"url": "https://github.com/Aleksoid1978/MPC-BE/issues/1005", "source": "cve@mitre.org"}, {"url": "https://github.com/axiomatic-systems/Bento4/issues/842", "source": "cve@mitre.org"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "A stack overflow in the AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file."}], "lastModified": "2026-06-26T22:16:31.747", "sourceIdentifier": "cve@mitre.org"}