本ページは libming ming に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2021-34342 | Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak. | [email protected] | 6.5 | 0.27% | 2022-03-10 | 2024-11-21 |
| CVE-2021-34341 | Ming 0.4.8 has an out-of-bounds read vulnerability in the function decompileIF() in the decompile.c file that causes a direct segmentation fault and leads to denial of service. | [email protected] | 6.5 | 0.23% | 2022-03-10 | 2024-11-21 |
| CVE-2021-34340 | Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct segmentation fault and leads to denial of service. | [email protected] | 6.5 | 0.23% | 2022-03-10 | 2024-11-21 |
| CVE-2021-34339 | Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmentation fault and leads to denial of service. | [email protected] | 6.5 | 0.23% | 2022-03-10 | 2024-11-21 |
| CVE-2021-34338 | Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName() in decompiler.c file that causes a direct segmentation fault and leads to denial of service. | [email protected] | 6.5 | 0.23% | 2022-03-10 | 2024-11-21 |
| CVE-2019-9114 | Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a. | [email protected] | 8.8 | 0.33% | 2019-02-25 | 2024-11-21 |
| CVE-2019-9113 | Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a. | [email protected] | 8.8 | 0.18% | 2019-02-25 | 2024-11-21 |
| CVE-2017-11734 | A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.19% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11733 | A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.32% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11732 | A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.16% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11731 | An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.19% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11730 | A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.11% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11729 | A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.19% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11728 | A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 5.5 | 0.19% | 2017-07-29 | 2026-05-13 |
| CVE-2017-11705 | A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 6.5 | 0.31% | 2017-07-28 | 2026-05-13 |
| CVE-2017-11704 | A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 6.5 | 0.16% | 2017-07-28 | 2026-05-13 |
| CVE-2017-11703 | A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. | [email protected] | 6.5 | 0.18% | 2017-07-28 | 2026-05-13 |