Lucene search
K

28 matches found

OSV
OSV
added 2026/03/16 2:19 p.m.5 views

CVE-2026-4185

A vulnerability was found in GPAC up to 2.5-DEV-rev2167-gcc9d617c0-master. This vulnerability affects the function swfdefbitsjpeg of the file src/scenemanager/swfparse.c of the component MP4Box. The manipulation of the argument szName results in stack-based buffer overflow. It is possible to laun...

6.3CVSS6.1AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-13066

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWFDEFINEBUTTON2, parseSWFDEFINEFONT,...

7.5CVSS7.2AI score0.0141EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-11705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak was found in the function parseSWFSHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted...

6.5CVSS6.3AI score0.01204EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/15 12:0 a.m.25 views

CVE-2024-28318

gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write vulnerability via swfgetstring at scenemanager/swfparse.c:325...

7.2AI score0.00528EPSS
Exploits1References1
Huntr
Huntr
added 2023/08/31 6:32 a.m.16 views

left shift of negative value in scene_manager/swf_parse.c:213:12

Description left shift of negative value in MP4Box Version $ ./bin/gcc/MP4Box -version MP4Box - GPAC version 2.3-DEV-revrelease c 2000-2023 Telecom Paris distributed under LGPL v2.1+ - http://gpac.io Please cite our work in your research: GPAC Filters: https://doi.org/10.1145/3339825.3394929 GPAC...

1.9CVSS6.8AI score0.00296EPSS
Exploits1References1
OSV
OSV
added 2023/01/05 3:15 p.m.2 views

DEBIAN-CVE-2022-47086

GPAC MP4Box v2.1-DEV-rev574-g9d5bb184b contains a segmentation violation via the function gfsmloadinitswf at scenemanager/swfparse.c...

5.5CVSS6.7AI score0.00277EPSS
Exploits1References1
OSV
OSV
added 2018/07/05 2:29 p.m.5 views

UBUNTU-CVE-2018-13251

In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of the util/read.c file, related to parseSWFDEFINEBITSJPEG2. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file...

6.5CVSS6.6AI score0.01456EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2018/07/05 2:29 p.m.2 views

CVE-2018-13251

In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of the util/read.c file, related to parseSWFDEFINEBITSJPEG2. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file...

6.5CVSS5.6AI score0.01456EPSS
Exploits1References2
OSV
OSV
added 2018/07/02 5:29 p.m.3 views

UBUNTU-CVE-2018-13066

There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWFDEFINEBUTTON2, parseSWFDEFINEFONT, parseSWFDEFINEFONTINFO, parseSWFDEFINELOSSLESS, parseSWFDEFINESPRITE, parseSWFDEFINETEXT, parseSWFDOACTION, parseSWFFILLSTYLEARRAY, parseSWFFRAMELABEL,...

7.5CVSS7.1AI score0.0141EPSS
Exploits0References3
Source Incite
Source Incite
added 2018/04/27 12:0 a.m.28 views

SRC-2018-0024 : Adobe Flash Player SWF Parsing Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific...

7.5CVSS8.1AI score0.0676EPSS
Exploits1
CNVD
CNVD
added 2017/09/13 12:0 a.m.2 views

Adobe Flash Player Memory Corruption Vulnerability (CNVD-2017-32685)

Adobe Flash Player is a multimedia program player. A memory corruption vulnerability exists in Adobe Flash Player's handling of SWFs, which could be exploited by remote attackers to submit a specially crafted SWF file and trick the user into parsing it, which could crash the application or execut...

9.8CVSS9.7AI score0.34848EPSS
Exploits3References1
OSV
OSV
added 2017/08/11 7:29 p.m.2 views

CVE-2017-3106

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution...

8.8CVSS6AI score0.22311EPSS
Exploits2References6
NVD
NVD
added 2017/08/11 7:29 p.m.21 views

CVE-2017-3106

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution...

9.3CVSS8.9AI score0.22311EPSS
Exploits2References6
RedhatCVE
RedhatCVE
added 2017/08/09 4:18 p.m.24 views

CVE-2017-3106

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution...

9.3CVSS5.3AI score0.22311EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2017/08/08 12:0 a.m.4 views

PT-2017-15656 · Adobe +2 · Flash Player +2

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 26.0.0.137 and earlier Description: The issue is related to a type confusion vulnerability when parsing SWF files, which could lead to arbitrary code execution if successfully exploited. This allows an attacker to...

10CVSS8.5AI score0.89618EPSS
Exploits47References143
Zero Day Initiative
Zero Day Initiative
added 2017/04/11 12:0 a.m.31 views

Adobe Flash SWF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within SWF parsing. The iss...

4.3CVSS3.5AI score0.0763EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/04/11 12:0 a.m.32 views

Adobe Flash SWF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within SWF parsing. The iss...

4.3CVSS3.5AI score0.0763EPSS
Exploits0References1
Prion
Prion
added 2017/01/11 4:59 a.m.15 views

Memory corruption

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Successful exploitation could lead to arbitrary code execution...

9.3CVSS8.9AI score0.21145EPSS
Exploits3References6Affected Software1
OSV
OSV
added 2017/01/11 4:59 a.m.3 views

UBUNTU-CVE-2017-2931

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Successful exploitation could lead to arbitrary code execution...

9.8CVSS7.5AI score0.21145EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2017/01/10 7:18 p.m.25 views

CVE-2017-2931

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Successful exploitation could lead to arbitrary code execution...

9.3CVSS6.1AI score0.2991EPSS
Exploits22References2
Rows per page
Query Builder