Lucene search

Swftools Security Vulnerabilities

cve

CVE-2022-40008

SWFTools commit 772e55a was discovered to contain a heap-buffer overflow via the function readU8 at /lib/ttf.c.

9.8CVSS

9.6AI Score

0.002EPSS

2022-09-20 08:15 PM

cve

CVE-2022-40009

SWFTools commit 772e55a was discovered to contain a heap-use-after-free via the function grow_unicode at /lib/ttf.c.

9.8CVSS

9.4AI Score

0.003EPSS

2022-09-20 08:15 PM

cve

CVE-2022-46440

ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.

5.5CVSS

5.5AI Score

0.001EPSS

2023-02-24 02:15 AM

cve

CVE-2023-26991

SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.

7.8CVSS

7.6AI Score

0.001EPSS

2023-04-04 03:15 PM

cve

CVE-2023-27249

swfdump v0.9.2 was discovered to contain a heap buffer overflow in the function swf_GetPlaceObject at swfobject.c.

5.5CVSS

5.8AI Score

0.001EPSS

2023-03-23 02:15 AM

cve

CVE-2023-29950

swfrender v0.9.2 was discovered to contain a heap buffer overflow in the function enumerateUsedIDs_fillstyle at modules/swftools.c

5.5CVSS

5.8AI Score

0.0004EPSS

2023-04-27 08:15 PM

cve

CVE-2023-37644

SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in png_read_chunk in lib/png.c.

5.5CVSS

5.6AI Score

0.0004EPSS

2024-01-11 08:15 AM

cve

CVE-2024-22562

swftools 0.9.2 was discovered to contain a Stack Buffer Underflow via the function dict_foreach_keyvalue at swftools/lib/q.c.

7.8CVSS

7.6AI Score

0.001EPSS

2024-01-19 03:15 PM

cve

CVE-2024-22911

A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602.

7.8CVSS

7.5AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22912

A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution.

7.8CVSS

7.7AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22913

A heap-buffer-overflow was found in SWFTools v0.9.2, in the function swf5lex at lex.swf5.c:1321. It allows an attacker to cause code execution.

7.8CVSS

7.7AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22914

A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.

5.5CVSS

5.4AI Score

0.0004EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22915

A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.

7.8CVSS

7.7AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22919

swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587.

7.8CVSS

7.6AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22920

swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.

7.8CVSS

7.6AI Score

0.001EPSS

2024-01-19 03:15 PM

cve

CVE-2024-22955

swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576.

7.8CVSS

7.6AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22956

swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838

7.8CVSS

7.6AI Score

0.001EPSS

2024-01-19 06:15 PM

cve

CVE-2024-22957

swftools 0.9.2 was discovered to contain an Out-of-bounds Read vulnerability via the function dict_do_lookup in swftools/lib/q.c:1190.

5.5CVSS

5.5AI Score

0.0004EPSS

2024-01-19 06:15 PM

Total number of security vulnerabilities118