Every CVE whose affected-product data names Libming Ming, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2019-9114 — CVSS 8.8 (high): Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a.
CVE-2019-9113 — CVSS 8.8 (high): Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a.
CVE-2017-11705 — CVSS 6.5 (medium): A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of…
CVE-2017-11703 — CVSS 6.5 (medium): A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a…
CVE-2017-11704 — CVSS 6.5 (medium): A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a…
CVE-2021-34338 — CVSS 6.5 (medium): Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName() in decompiler.c file that causes a direct segmentation…
CVE-2021-34339 — CVSS 6.5 (medium): Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmentation…
CVE-2021-34340 — CVSS 6.5 (medium): Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct…
CVE-2021-34341 — CVSS 6.5 (medium): Ming 0.4.8 has an out-of-bounds read vulnerability in the function decompileIF() in the decompile.c file that causes a direct segmentation…
CVE-2021-34342 — CVSS 6.5 (medium): Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak.
CVE-2017-11729 — CVSS 5.5 (medium): A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming…
CVE-2017-11728 — CVSS 5.5 (medium): A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which…
CVE-2017-11730 — CVSS 5.5 (medium): A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming…
CVE-2017-11731 — CVSS 5.5 (medium): An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming…
CVE-2017-11732 — CVSS 5.5 (medium): A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming…
CVE-2017-11733 — CVSS 5.5 (medium): A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming…
CVE-2017-11734 — CVSS 5.5 (medium): A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows attackers to…