Lucene search
China National Vulnerability DatabaseCNVD-2022-70586HistorySep 22, 2022 - 12:00 a.m.
SWFTools Memory Leak Vulnerability (CNVD-2022-70586)
2022-09-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
SWFTools is a set of utilities for working with Adobe Flash files (SWF files). SWFTools suffers from a memory leak vulnerability that stems from /lib/mem.c not releasing or failing to release dynamically allocated heap memory, which can be exploited by an attacker to crash the program.
Related
cve
cve
CVE-2022-35085
2022-09-21 00:15:00
prion
prion
Memory corruption
2022-09-21 00:15:00
ubuntucve
ubuntucve
CVE-2022-35085
2022-09-21 00:00:00
nessus
nessus
Security Updates for Microsoft Dynamics 365 (on-premises) (September 2022)
2022-09-14 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Related for CNVD-2022-70586