Suggest you use AES GCM rather than CBC. See [here](https://crypto.stackexchange.com/questions/101845/is-there-a-security-risk-to-use-aes-cbc-as-stream-cipher), [here](https://crypto.stackexchange.com/questions/19280/is-there-any-area-where-aes-cbc-cannot-be-used-if-so-why).
Suggest you use AES GCM rather than CBC. See here, here.