Libming
by Libming
Source repositories
CVEs (120)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-26306 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file. | |||
| CVE-2025-26311 | 0.00 | — | 0.00 | Feb 20, 2025 | Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2025-26307 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24148 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24146 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_DEFINEBUTTON in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file. | |||
| CVE-2024-24150 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24147 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_FILLSTYLEARRAY in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file. | |||
| CVE-2024-24149 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_GLYPHENTRY in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-25770 | 0.00 | — | 0.01 | Feb 26, 2024 | libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c. | |||
| CVE-2023-50628 | 0.00 | — | 0.01 | Dec 20, 2023 | Buffer Overflow vulnerability in libming version 0.4.8, allows attackers to execute arbitrary code and obtain sensitive information via parser.c component. | |||
| CVE-2023-40781 | 0.00 | — | 0.01 | Aug 28, 2023 | Buffer Overflow vulnerability in Libming Libming v.0.4.8 allows a remote attacker to cause a denial of service via a crafted .swf file to the makeswf function. | |||
| CVE-2023-36239 | 0.00 | — | 0.01 | Jun 22, 2023 | libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c. | |||
| CVE-2023-30083 | 0.00 | — | 0.00 | May 9, 2023 | Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVar_N in util/decompile.c. | |||
| CVE-2023-31976 | 0.00 | — | 0.01 | May 9, 2023 | libming v0.4.8 was discovered to contain a stack buffer overflow via the function makeswf_preprocess at /util/makeswf_utils.c. | |||
| CVE-2021-31240 | 0.00 | — | 0.00 | May 9, 2023 | An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file. | |||
| CVE-2023-30084 | 0.00 | — | 0.00 | May 9, 2023 | An issue found in libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the stackVal function in util/decompile.c. | |||
| CVE-2023-30085 | 0.00 | — | 0.00 | May 9, 2023 | Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c. | |||
| CVE-2022-44232 | 0.00 | — | 0.01 | Apr 26, 2023 | libming 0.4.8 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This is a different vulnerability than CVE-2018-9132 and CVE-2018-20427. | |||
| CVE-2021-34342 | 0.00 | — | 0.01 | Mar 7, 2022 | Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak. | |||
| CVE-2021-44591 | 0.00 | — | 0.01 | Jan 6, 2022 | In libming 0.4.8, the parseSWF_DEFINELOSSLESS2 function in util/parser.c lacks a boundary check that would lead to denial-of-service attacks via a crafted SWF file. |
- CVE-2025-26306Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file.
- CVE-2025-26311Feb 20, 2025risk 0.00cvss —epss 0.00
Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file.
- CVE-2025-26307Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24148Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24146Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_DEFINEBUTTON in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file.
- CVE-2024-24150Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24147Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_FILLSTYLEARRAY in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file.
- CVE-2024-24149Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_GLYPHENTRY in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-25770Feb 26, 2024risk 0.00cvss —epss 0.01
libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c.
- CVE-2023-50628Dec 20, 2023risk 0.00cvss —epss 0.01
Buffer Overflow vulnerability in libming version 0.4.8, allows attackers to execute arbitrary code and obtain sensitive information via parser.c component.
- CVE-2023-40781Aug 28, 2023risk 0.00cvss —epss 0.01
Buffer Overflow vulnerability in Libming Libming v.0.4.8 allows a remote attacker to cause a denial of service via a crafted .swf file to the makeswf function.
- CVE-2023-36239Jun 22, 2023risk 0.00cvss —epss 0.01
libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c.
- CVE-2023-30083May 9, 2023risk 0.00cvss —epss 0.00
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVar_N in util/decompile.c.
- CVE-2023-31976May 9, 2023risk 0.00cvss —epss 0.01
libming v0.4.8 was discovered to contain a stack buffer overflow via the function makeswf_preprocess at /util/makeswf_utils.c.
- CVE-2021-31240May 9, 2023risk 0.00cvss —epss 0.00
An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file.
- CVE-2023-30084May 9, 2023risk 0.00cvss —epss 0.00
An issue found in libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the stackVal function in util/decompile.c.
- CVE-2023-30085May 9, 2023risk 0.00cvss —epss 0.00
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c.
- CVE-2022-44232Apr 26, 2023risk 0.00cvss —epss 0.01
libming 0.4.8 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This is a different vulnerability than CVE-2018-9132 and CVE-2018-20427.
- CVE-2021-34342Mar 7, 2022risk 0.00cvss —epss 0.01
Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak.
- CVE-2021-44591Jan 6, 2022risk 0.00cvss —epss 0.01
In libming 0.4.8, the parseSWF_DEFINELOSSLESS2 function in util/parser.c lacks a boundary check that would lead to denial-of-service attacks via a crafted SWF file.
Page 5 of 6