Vulnerabilities > Libming > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-08-25 | CVE-2018-15871 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. | 6.5 |
| 2018-08-25 | CVE-2018-15870 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. | 6.5 |
| 2018-07-05 | CVE-2018-13251 | Resource Exhaustion vulnerability in Libming 0.4.8 In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of the util/read.c file, related to parseSWF_DEFINEBITSJPEG2. | 6.5 |
| 2018-07-05 | CVE-2018-13250 | NULL Pointer Dereference vulnerability in Libming 0.4.8 libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file, related to decompileSTRINGCONCAT. | 6.5 |
| 2018-04-01 | CVE-2018-9165 | NULL Pointer Dereference vulnerability in Libming The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to cause a denial of service via a crafted SWF file. | 6.5 |
| 2018-03-30 | CVE-2018-9132 | NULL Pointer Dereference vulnerability in multiple products libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file. | 6.5 |
| 2018-03-23 | CVE-2018-8964 | Use After Free vulnerability in Libming 0.4.8 In libming 0.4.8, the decompileDELETE function of decompile.c has a use-after-free. | 6.5 |
| 2018-03-23 | CVE-2018-8963 | Use After Free vulnerability in Libming 0.4.8 In libming 0.4.8, the decompileGETVARIABLE function of decompile.c has a use-after-free. | 6.5 |
| 2018-03-23 | CVE-2018-8962 | Use After Free vulnerability in Libming 0.4.8 In libming 0.4.8, the decompileSingleArgBuiltInFunctionCall function of decompile.c has a use-after-free. | 6.5 |
| 2018-03-23 | CVE-2018-8961 | Use After Free vulnerability in Libming 0.4.8 In libming 0.4.8, the decompilePUSHPARAM function of decompile.c has a use-after-free. | 6.5 |