Vendor CVEs
Libming
All CVEs
123 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-11730 | Med | 0.36 | 5.5 | 0.01 | Jul 29, 2017 | A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | ||
| CVE-2017-11729 | Med | 0.36 | 5.5 | 0.01 | Jul 29, 2017 | A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | ||
| CVE-2017-11728 | Med | 0.36 | 5.5 | 0.01 | Jul 29, 2017 | A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | ||
| CVE-2016-9265 | Med | 0.36 | 5.5 | 0.02 | Mar 23, 2017 | The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file. | ||
| CVE-2016-9264 | Med | 0.36 | 5.5 | 0.02 | Mar 23, 2017 | Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file. | ||
| CVE-2016-9828 | Med | 0.36 | 5.5 | 0.02 | Feb 17, 2017 | The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file. | ||
| CVE-2016-9827 | Med | 0.36 | 5.5 | 0.02 | Feb 17, 2017 | The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file. | ||
| CVE-2018-15871 | Med | 0.35 | 6.5 | 0.01 | Aug 25, 2018 | An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. | ||
| CVE-2018-15870 | Med | 0.35 | 6.5 | 0.01 | Aug 25, 2018 | An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. | ||
| CVE-2025-66869 | 0.00 | — | 0.00 | Dec 29, 2025 | Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8. | |||
| CVE-2025-66877 | 0.00 | — | 0.00 | Dec 29, 2025 | Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8. | |||
| CVE-2025-29487 | 0.00 | — | 0.00 | Mar 27, 2025 | An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. | |||
| CVE-2025-29491 | 0.00 | — | 0.00 | Mar 27, 2025 | An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file. | |||
| CVE-2025-29496 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileDUPLICATECLIP function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | |||
| CVE-2025-29484 | 0.00 | — | 0.00 | Mar 27, 2025 | An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. | |||
| CVE-2025-29486 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_PLACEOBJECT3 function. | |||
| CVE-2025-29489 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHLINESTYLES function. | |||
| CVE-2025-29485 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileRETURN function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | |||
| CVE-2025-29494 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETMEMBER function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | |||
| CVE-2025-29483 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_ENABLEDEBUGGER2 function. | |||
| CVE-2025-29497 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHFILLSTYLES function. | |||
| CVE-2025-29490 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | |||
| CVE-2025-29488 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_INITACTION function. | |||
| CVE-2025-29493 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETPROPERTY function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | |||
| CVE-2025-29492 | 0.00 | — | 0.00 | Mar 27, 2025 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileSETVARIABLE function. | |||
| CVE-2025-26305 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the parseSWF_SOUNDINFO function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2025-26306 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file. | |||
| CVE-2025-26304 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the parseSWF_EXPORTASSETS function in util/parser.c of libming v0.4.8. | |||
| CVE-2025-26310 | 0.00 | — | 0.00 | Feb 20, 2025 | Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted ABC file. | |||
| CVE-2025-26311 | 0.00 | — | 0.00 | Feb 20, 2025 | Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2025-26307 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2025-26309 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2025-26308 | 0.00 | — | 0.00 | Feb 20, 2025 | A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24148 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24146 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_DEFINEBUTTON in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file. | |||
| CVE-2024-24150 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24149 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_GLYPHENTRY in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file. | |||
| CVE-2024-24147 | 0.00 | — | 0.01 | Feb 28, 2024 | A memory leak issue discovered in parseSWF_FILLSTYLEARRAY in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file. | |||
| CVE-2024-25770 | 0.00 | — | 0.01 | Feb 26, 2024 | libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c. | |||
| CVE-2023-50628 | 0.00 | — | 0.01 | Dec 20, 2023 | Buffer Overflow vulnerability in libming version 0.4.8, allows attackers to execute arbitrary code and obtain sensitive information via parser.c component. | |||
| CVE-2023-40781 | 0.00 | — | 0.01 | Aug 28, 2023 | Buffer Overflow vulnerability in Libming Libming v.0.4.8 allows a remote attacker to cause a denial of service via a crafted .swf file to the makeswf function. | |||
| CVE-2023-36239 | 0.00 | — | 0.01 | Jun 22, 2023 | libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c. | |||
| CVE-2023-30084 | 0.00 | — | 0.00 | May 9, 2023 | An issue found in libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the stackVal function in util/decompile.c. | |||
| CVE-2023-31976 | 0.00 | — | 0.01 | May 9, 2023 | libming v0.4.8 was discovered to contain a stack buffer overflow via the function makeswf_preprocess at /util/makeswf_utils.c. | |||
| CVE-2023-30083 | 0.00 | — | 0.00 | May 9, 2023 | Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVar_N in util/decompile.c. | |||
| CVE-2021-31240 | 0.00 | — | 0.00 | May 9, 2023 | An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file. | |||
| CVE-2023-30085 | 0.00 | — | 0.00 | May 9, 2023 | Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c. | |||
| CVE-2022-44232 | 0.00 | — | 0.01 | Apr 26, 2023 | libming 0.4.8 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This is a different vulnerability than CVE-2018-9132 and CVE-2018-20427. | |||
| CVE-2021-34339 | 0.00 | — | 0.01 | Mar 7, 2022 | Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmentation fault and leads to denial of service. | |||
| CVE-2021-34340 | 0.00 | — | 0.01 | Mar 7, 2022 | Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct segmentation fault and leads to denial of service. |
- risk 0.36cvss 5.5epss 0.01
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.
- risk 0.36cvss 5.5epss 0.01
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.
- risk 0.36cvss 5.5epss 0.01
A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.
- risk 0.36cvss 5.5epss 0.02
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
- risk 0.36cvss 5.5epss 0.02
Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.
- risk 0.36cvss 5.5epss 0.02
The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file.
- risk 0.36cvss 5.5epss 0.02
The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file.
- risk 0.35cvss 6.5epss 0.01
An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.
- risk 0.35cvss 6.5epss 0.01
An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.
- CVE-2025-66869Dec 29, 2025risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.
- CVE-2025-66877Dec 29, 2025risk 0.00cvss —epss 0.00
Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8.
- CVE-2025-29487Mar 27, 2025risk 0.00cvss —epss 0.00
An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion.
- CVE-2025-29491Mar 27, 2025risk 0.00cvss —epss 0.00
An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file.
- CVE-2025-29496Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a segmentation fault via the decompileDUPLICATECLIP function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
- CVE-2025-29484Mar 27, 2025risk 0.00cvss —epss 0.00
An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion.
- CVE-2025-29486Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_PLACEOBJECT3 function.
- CVE-2025-29489Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHLINESTYLES function.
- CVE-2025-29485Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a segmentation fault via the decompileRETURN function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
- CVE-2025-29494Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETMEMBER function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
- CVE-2025-29483Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_ENABLEDEBUGGER2 function.
- CVE-2025-29497Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHFILLSTYLES function.
- CVE-2025-29490Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
- CVE-2025-29488Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_INITACTION function.
- CVE-2025-29493Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETPROPERTY function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file.
- CVE-2025-29492Mar 27, 2025risk 0.00cvss —epss 0.00
libming v0.4.8 was discovered to contain a segmentation fault via the decompileSETVARIABLE function.
- CVE-2025-26305Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the parseSWF_SOUNDINFO function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2025-26306Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file.
- CVE-2025-26304Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the parseSWF_EXPORTASSETS function in util/parser.c of libming v0.4.8.
- CVE-2025-26310Feb 20, 2025risk 0.00cvss —epss 0.00
Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted ABC file.
- CVE-2025-26311Feb 20, 2025risk 0.00cvss —epss 0.00
Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file.
- CVE-2025-26307Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2025-26309Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2025-26308Feb 20, 2025risk 0.00cvss —epss 0.00
A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24148Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24146Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_DEFINEBUTTON in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file.
- CVE-2024-24150Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24149Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_GLYPHENTRY in libming v0.4.8 allows attackers to cause a denial of service via a crafted SWF file.
- CVE-2024-24147Feb 28, 2024risk 0.00cvss —epss 0.01
A memory leak issue discovered in parseSWF_FILLSTYLEARRAY in libming v0.4.8 allows attackers to cause s denial of service via a crafted SWF file.
- CVE-2024-25770Feb 26, 2024risk 0.00cvss —epss 0.01
libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c.
- CVE-2023-50628Dec 20, 2023risk 0.00cvss —epss 0.01
Buffer Overflow vulnerability in libming version 0.4.8, allows attackers to execute arbitrary code and obtain sensitive information via parser.c component.
- CVE-2023-40781Aug 28, 2023risk 0.00cvss —epss 0.01
Buffer Overflow vulnerability in Libming Libming v.0.4.8 allows a remote attacker to cause a denial of service via a crafted .swf file to the makeswf function.
- CVE-2023-36239Jun 22, 2023risk 0.00cvss —epss 0.01
libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c.
- CVE-2023-30084May 9, 2023risk 0.00cvss —epss 0.00
An issue found in libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the stackVal function in util/decompile.c.
- CVE-2023-31976May 9, 2023risk 0.00cvss —epss 0.01
libming v0.4.8 was discovered to contain a stack buffer overflow via the function makeswf_preprocess at /util/makeswf_utils.c.
- CVE-2023-30083May 9, 2023risk 0.00cvss —epss 0.00
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVar_N in util/decompile.c.
- CVE-2021-31240May 9, 2023risk 0.00cvss —epss 0.00
An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file.
- CVE-2023-30085May 9, 2023risk 0.00cvss —epss 0.00
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c.
- CVE-2022-44232Apr 26, 2023risk 0.00cvss —epss 0.01
libming 0.4.8 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This is a different vulnerability than CVE-2018-9132 and CVE-2018-20427.
- CVE-2021-34339Mar 7, 2022risk 0.00cvss —epss 0.01
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.
- CVE-2021-34340Mar 7, 2022risk 0.00cvss —epss 0.01
Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct segmentation fault and leads to denial of service.
Page 2 of 3