CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-31240
https://notcve.org/view.php?id=CVE-2021-31240
An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file. • https://github.com/libming/libming/issues/218 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-30085
https://notcve.org/view.php?id=CVE-2023-30085
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c. • https://github.com/libming/libming/issues/267 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-44232
https://notcve.org/view.php?id=CVE-2022-44232
libming 0.4.8 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This is a different vulnerability than CVE-2018-9132 and CVE-2018-20427. • https://github.com/huanglei3/libming_crashes.git • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-44591
https://notcve.org/view.php?id=CVE-2021-44591
In libming 0.4.8, the parseSWF_DEFINELOSSLESS2 function in util/parser.c lacks a boundary check that would lead to denial-of-service attacks via a crafted SWF file. En libming versión 0.4.8, la función parseSWF_DEFINELOSSLESS2 en el archivo util/parser.c carece de una comprobación de límites que podría conllevar a ataques de denegación de servicio por medio de un archivo SWF diseñado. • https://github.com/libming/libming https://github.com/libming/libming/issues/235 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-44590
https://notcve.org/view.php?id=CVE-2021-44590
In libming 0.4.8, a memory exhaustion vulnerability exist in the function cws2fws in util/main.c. Remote attackers could launch denial of service attacks by submitting a crafted SWF file that exploits this vulnerability. En libming versión 0.4.8, se presenta una vulnerabilidad de agotamiento de memoria en la función cws2fws en el archivo util/main.c. Los atacantes remotos podrían lanzar ataques de denegación de servicio enviando un archivo SWF diseñado que aproveche esta vulnerabilidad. • https://github.com/libming/libming https://github.com/libming/libming/issues/236 • CWE-770: Allocation of Resources Without Limits or Throttling •