VYPR

Vendor CVEs

Libming

All CVEs

123 total · sorted by risk
  • CVE-2017-11730MedJul 29, 2017
    risk 0.36cvss 5.5epss 0.01

    A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-11729MedJul 29, 2017
    risk 0.36cvss 5.5epss 0.01

    A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-11728MedJul 29, 2017
    risk 0.36cvss 5.5epss 0.01

    A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2016-9265MedMar 23, 2017
    risk 0.36cvss 5.5epss 0.02

    The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.

  • CVE-2016-9264MedMar 23, 2017
    risk 0.36cvss 5.5epss 0.02

    Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.

  • CVE-2016-9828MedFeb 17, 2017
    risk 0.36cvss 5.5epss 0.02

    The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file.

  • CVE-2016-9827MedFeb 17, 2017
    risk 0.36cvss 5.5epss 0.02

    The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file.

  • CVE-2018-15871MedAug 25, 2018
    risk 0.35cvss 6.5epss 0.01

    An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.

  • CVE-2018-15870MedAug 25, 2018
    risk 0.35cvss 6.5epss 0.01

    An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.

  • CVE-2025-66869Dec 29, 2025
    risk 0.00cvss epss 0.00

    Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.

  • CVE-2025-66877Dec 29, 2025
    risk 0.00cvss epss 0.00

    Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8.

  • CVE-2025-29487Mar 27, 2025
    risk 0.00cvss epss 0.00

    An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion.

  • CVE-2025-29491Mar 27, 2025
    risk 0.00cvss epss 0.00

    An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file.

  • CVE-2025-29496Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a segmentation fault via the decompileDUPLICATECLIP function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.

  • CVE-2025-29484Mar 27, 2025
    risk 0.00cvss epss 0.00

    An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion.

  • CVE-2025-29486Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a memory leak via the parseSWF_PLACEOBJECT3 function.

  • CVE-2025-29489Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHLINESTYLES function.

  • CVE-2025-29485Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a segmentation fault via the decompileRETURN function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.

  • CVE-2025-29494Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETMEMBER function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.

  • CVE-2025-29483Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a memory leak via the parseSWF_ENABLEDEBUGGER2 function.

  • CVE-2025-29497Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHFILLSTYLES function.

  • CVE-2025-29490Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.

  • CVE-2025-29488Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a memory leak via the parseSWF_INITACTION function.

  • CVE-2025-29493Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETPROPERTY function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.

  • CVE-2025-29492Mar 27, 2025
    risk 0.00cvss epss 0.00

    libming v0.4.8 was discovered to contain a segmentation fault via the decompileSETVARIABLE function.

  • CVE-2025-26305Feb 20, 2025
    risk 0.00cvss epss 0.00

    A memory leak has been identified in the parseSWF_SOUNDINFO function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2025-26306Feb 20, 2025
    risk 0.00cvss epss 0.00

    A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2025-26304Feb 20, 2025
    risk 0.00cvss epss 0.00

    A memory leak has been identified in the parseSWF_EXPORTASSETS function in util/parser.c of libming v0.4.8.

  • CVE-2025-26310Feb 20, 2025
    risk 0.00cvss epss 0.00

    Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted ABC file.

  • CVE-2025-26311Feb 20, 2025
    risk 0.00cvss epss 0.00

    Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file.

  • CVE-2025-26307Feb 20, 2025
    risk 0.00cvss epss 0.00

    A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2025-26309Feb 20, 2025
    risk 0.00cvss epss 0.00

    A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2025-26308Feb 20, 2025
    risk 0.00cvss epss 0.00

    A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2024-24148Feb 28, 2024
    risk 0.00cvss epss 0.01

    A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2024-24146Feb 28, 2024
    risk 0.00cvss epss 0.01

    A memory leak issue discovered in parseSWF_DEFINEBUTTON in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file.

  • CVE-2024-24150Feb 28, 2024
    risk 0.00cvss epss 0.01

    A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2024-24149Feb 28, 2024
    risk 0.00cvss epss 0.01

    A memory leak issue discovered in parseSWF_GLYPHENTRY in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.

  • CVE-2024-24147Feb 28, 2024
    risk 0.00cvss epss 0.01

    A memory leak issue discovered in parseSWF_FILLSTYLEARRAY in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file.

  • CVE-2024-25770Feb 26, 2024
    risk 0.00cvss epss 0.01

    libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c.

  • CVE-2023-50628Dec 20, 2023
    risk 0.00cvss epss 0.01

    Buffer Overflow vulnerability in libming version 0.4.8, allows attackers to execute arbitrary code and obtain sensitive information via parser.c component.

  • CVE-2023-40781Aug 28, 2023
    risk 0.00cvss epss 0.01

    Buffer Overflow vulnerability in Libming Libming v.0.4.8 allows a remote attacker to cause a denial of service via a crafted .swf file to the makeswf function.

  • CVE-2023-36239Jun 22, 2023
    risk 0.00cvss epss 0.01

    libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c.

  • CVE-2023-30084May 9, 2023
    risk 0.00cvss epss 0.00

    An issue found in libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the stackVal function in util/decompile.c.

  • CVE-2023-31976May 9, 2023
    risk 0.00cvss epss 0.01

    libming v0.4.8 was discovered to contain a stack buffer overflow via the function makeswf_preprocess at /util/makeswf_utils.c.

  • CVE-2023-30083May 9, 2023
    risk 0.00cvss epss 0.00

    Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVar_N in util/decompile.c.

  • CVE-2021-31240May 9, 2023
    risk 0.00cvss epss 0.00

    An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file.

  • CVE-2023-30085May 9, 2023
    risk 0.00cvss epss 0.00

    Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c.

  • CVE-2022-44232Apr 26, 2023
    risk 0.00cvss epss 0.01

    libming 0.4.8 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This is a different vulnerability than CVE-2018-9132 and CVE-2018-20427.

  • CVE-2021-34339Mar 7, 2022
    risk 0.00cvss epss 0.01

    Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.

  • CVE-2021-34340Mar 7, 2022
    risk 0.00cvss epss 0.01

    Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.