threat
engine
.sh
Back
·
··:··
Home
/
Product
/
libming
Product
libming
124 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-66877
all versions
Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8.
7.5
HIGH
CVE-2025-66869
all versions
Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.
7.5
HIGH
CVE-2025-29497
all versions
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHFILLSTYLES function.
6.5
MEDIUM
CVE-2025-29496
all versions
libming v0.4.8 was discovered to contain a segmentation fault via the decompileDUPLICATECLIP function. This vulnerability allows a
6.5
MEDIUM
CVE-2025-29494
all versions
libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETMEMBER function. This vulnerability allows attac
6.5
MEDIUM
CVE-2025-29493
all versions
libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETPROPERTY function. This vulnerability allows att
6.5
MEDIUM
CVE-2025-29492
all versions
libming v0.4.8 was discovered to contain a segmentation fault via the decompileSETVARIABLE function.
6.5
MEDIUM
CVE-2025-29491
all versions
An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of
6.5
MEDIUM
CVE-2025-29490
all versions
libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows atta
6.5
MEDIUM
CVE-2025-29489
all versions
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHLINESTYLES function.
6.5
MEDIUM
CVE-2025-29488
all versions
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_INITACTION function.
6.5
MEDIUM
CVE-2025-29487
all versions
An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS)
7.5
HIGH
CVE-2025-29486
all versions
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_PLACEOBJECT3 function.
6.5
MEDIUM
CVE-2025-29485
all versions
libming v0.4.8 was discovered to contain a segmentation fault via the decompileRETURN function. This vulnerability allows attacker
6.5
MEDIUM
CVE-2025-29484
all versions
An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS)
7.5
HIGH
CVE-2025-29483
all versions
libming v0.4.8 was discovered to contain a memory leak via the parseSWF_ENABLEDEBUGGER2 function.
6.5
MEDIUM
CVE-2025-26311
all versions
Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECO
6.5
MEDIUM
CVE-2025-26310
all versions
Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/p
6.5
MEDIUM
CVE-2025-26309
all versions
A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allow
6.5
MEDIUM
CVE-2025-26308
all versions
A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers t
6.5
MEDIUM
CVE-2025-26307
all versions
A memory leak has been identified in the parseSWF_IMPORTASSETS2 function in util/parser.c of libming v0.4.8, which allows attacker
6.5
MEDIUM
CVE-2025-26306
all versions
A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to caus
6.5
MEDIUM
CVE-2025-26305
all versions
A memory leak has been identified in the parseSWF_SOUNDINFO function in util/parser.c of libming v0.4.8, which allows attackers to
8.2
HIGH
CVE-2025-26304
all versions
A memory leak has been identified in the parseSWF_EXPORTASSETS function in util/parser.c of libming v0.4.8.
8.2
HIGH
CVE-2024-24150
all versions
A memory leak issue discovered in parseSWF_TEXTRECORD in libming v0.4.8 allows attackers to cause a denial of service via a crafte
6.5
MEDIUM
CVE-2024-24149
all versions
A memory leak issue discovered in parseSWF_GLYPHENTRY in libming v0.4.8 allows attackers to cause a denial of service via a crafte
6.5
MEDIUM
CVE-2024-24147
all versions
A memory leak issue discovered in parseSWF_FILLSTYLEARRAY in libming v0.4.8 allows attackers to cause s denial of service via a cr
6.5
MEDIUM
CVE-2024-24146
all versions
A memory leak issue discovered in parseSWF_DEFINEBUTTON in libming v0.4.8 allows attackers to cause s denial of service via a craf
6.5
MEDIUM
CVE-2024-24148
all versions
A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to cause a denial of service via a cra
7.5
HIGH
CVE-2024-25770
all versions
libming 0.4.8 contains a memory leak vulnerability in /libming/src/actioncompiler/listaction.c.
4.3
MEDIUM
CVE-2023-50628
all versions
Buffer Overflow vulnerability in libming version 0.4.8, allows attackers to execute arbitrary code and obtain sensitive informatio
9.8
CRITICAL
CVE-2023-40781
all versions
Buffer Overflow vulnerability in Libming v.0.4.8 allows a remote attacker to cause a denial of service via a crafted .swf
6.5
MEDIUM
CVE-2023-36239
all versions
libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c.
8.8
HIGH
CVE-2023-30085
all versions
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2f
5.5
MEDIUM
CVE-2023-30084
all versions
An issue found in libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the stackVal function in util/
5.5
MEDIUM
CVE-2023-30083
all versions
Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVa
5.5
MEDIUM
CVE-2021-31240
all versions
An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the
7.8
HIGH
CVE-2023-31976
all versions
libming v0.4.8 was discovered to contain a stack buffer overflow via the function makeswf_preprocess at /util/makeswf_utils.c.
8.8
HIGH
CVE-2022-44232
all versions
libming 0.4.8 is vulnerable to Buffer Overflow. In getInt() in decompile.c unknown type may lead to denial of service. This
7.5
HIGH
CVE-2021-34342
all versions
Ming 0.4.8 has an out-of-bounds read vulnerability in the function newVar_N() in decompile.c which causes a huge information leak.
6.5
MEDIUM
CVE-2021-34341
all versions
Ming 0.4.8 has an out-of-bounds read vulnerability in the function decompileIF() in the decompile.c file that causes a direct segm
6.5
MEDIUM
CVE-2021-34340
all versions
Ming 0.4.8 has an out-of-bounds buffer access issue in the function decompileINCR_DECR() in decompiler.c file that causes a direct
6.5
MEDIUM
CVE-2021-34339
all versions
Ming 0.4.8 has an out-of-bounds buffer access issue in the function getString() in decompiler.c file that causes a direct segmenta
6.5
MEDIUM
CVE-2021-34338
all versions
Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName() in decompiler.c file that causes a direct segment
6.5
MEDIUM
CVE-2021-44591
all versions
In libming 0.4.8, the parseSWF_DEFINELOSSLESS2 function in util/parser.c lacks a boundary check that would lead to denial-of-servi
6.5
MEDIUM
CVE-2021-44590
all versions
In libming 0.4.8, a memory exhaustion vulnerability exist in the function cws2fws in util/main.c. Remote attackers could launch de
6.5
MEDIUM
CVE-2020-11895
all versions
Ming (aka libming) 0.4.8 has a heap-based buffer over-read (2 bytes) in the function decompileIF() in decompile.c.
9.1
CRITICAL
CVE-2020-11894
all versions
Ming (aka libming) 0.4.8 has a heap-based buffer over-read (8 bytes) in the function decompileIF() in decompile.c.
9.1
CRITICAL
CVE-2020-6629
all versions
Ming (aka libming) 0.4.8 has z NULL pointer dereference in the function decompileGETURL2() in decompile.c.
6.5
MEDIUM
CVE-2020-6628
all versions
Ming (aka libming) 0.4.8 has a heap-based buffer over-read in the function decompile_SWITCH() in decompile.c.
8.8
HIGH
CVE-2019-16705
all versions
Ming (aka libming) 0.4.8 has an out of bounds read vulnerability in the function OpCode() in the decompile.c file in libutil.a.
9.1
CRITICAL
CVE-2019-12982
all versions
Ming (aka libming) 0.4.8 has a heap buffer overflow and underflow in the decompileCAST function in util/decompile.c in libutil.a.
6.5
MEDIUM
CVE-2019-12981
all versions
Ming (aka libming) 0.4.8 has an "fill overflow" vulnerability in the function SWFShape_setLeftFillStyle in blocks/shape.c.
8.8
HIGH
CVE-2019-12980
all versions
In Ming (aka libming) 0.4.8, there is an integer overflow (caused by an out-of-range left shift) in the SWFInput_readSBits functio
6.5
MEDIUM
CVE-2019-9114
all versions
Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a
8.8
HIGH
CVE-2019-9113
all versions
Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a.
8.8
HIGH
CVE-2019-7582
<= 0.4.8
The readBytes function in util/read.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted sw
8.8
HIGH
CVE-2019-7581
<= 0.4.8
The parseSWF_ACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact vi
8.8
HIGH
CVE-2019-3572
all versions
An issue was discovered in libming 0.4.8. There is a heap-based buffer over-read in the function writePNG in the file util/dbl2png
6.5
MEDIUM
CVE-2018-20591
all versions
A heap-based buffer over-read was discovered in decompileJUMP function in util/decompile.c of libming v0.4.8. A crafted input can
6.5
MEDIUM
CVE-2018-20429
all versions
libming 0.4.8 has a NULL pointer dereference in the getName function of the decompile.c file, a different vulnerability than CVE-2
8.8
HIGH
CVE-2018-20428
all versions
libming 0.4.8 has a NULL pointer dereference in the strlenext function of the decompile.c file, a different vulnerability than CVE
8.8
HIGH
CVE-2018-20427
all versions
libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file, a different vulnerability than CVE-20
8.8
HIGH
CVE-2018-20426
all versions
libming 0.4.8 has a NULL pointer dereference in the newVar3 function of the decompile.c file, a different vulnerability than CVE-2
8.8
HIGH
CVE-2018-20425
all versions
libming 0.4.8 has a NULL pointer dereference in the pushdup function of the decompile.c file.
8.8
HIGH
CVE-2018-15871
< 0.4.8
An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12.
6.5
MEDIUM
CVE-2018-15870
< 0.4.8
An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. The vulnerability
6.5
MEDIUM
CVE-2018-13251
all versions
In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of the util/read.c file, related to pa
6.5
MEDIUM
CVE-2018-13250
all versions
libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file, related to decompileSTRINGCONCAT.
6.5
MEDIUM
CVE-2018-13066
all versions
There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWF_DEFINEBUTTON2, parse
7.5
HIGH
CVE-2018-11226
<= 0.4.8
The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater tha
8.8
HIGH
CVE-2018-11225
<= 0.4.8
The dcputs function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than t
8.8
HIGH
CVE-2018-11100
<= 0.4.8
The decompileSETTARGET function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size gr
8.8
HIGH
CVE-2018-11095
<= 0.4.8
The decompileJUMP function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater
8.8
HIGH
CVE-2018-11017
<= 0.4.8
The newVar_N function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than
8.8
HIGH
CVE-2018-9165
<= 0.4.8
The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a
6.5
MEDIUM
CVE-2018-9132
all versions
libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file. Remote attackers could leverage this
6.5
MEDIUM
CVE-2018-9009
all versions
In libming 0.4.8, there is a use-after-free in the decompileJUMP function of the decompile.c file.
8.8
HIGH
CVE-2018-8964
all versions
In libming 0.4.8, the decompileDELETE function of decompile.c has a use-after-free. Remote attackers could leverage this vulnerabi
6.5
MEDIUM
CVE-2018-8963
all versions
In libming 0.4.8, the decompileGETVARIABLE function of decompile.c has a use-after-free. Remote attackers could leverage this vuln
6.5
MEDIUM
CVE-2018-8962
all versions
In libming 0.4.8, the decompileSingleArgBuiltInFunctionCall function of decompile.c has a use-after-free. Remote attackers could l
6.5
MEDIUM
CVE-2018-8961
all versions
In libming 0.4.8, the decompilePUSHPARAM function of decompile.c has a use-after-free. Remote attackers could leverage this vulner
6.5
MEDIUM
CVE-2018-8807
all versions
In libming 0.4.8, these is a use-after-free in the function decompileCALLFUNCTION of decompile.c. Remote attackers could leverage
6.5
MEDIUM
CVE-2018-8806
all versions
In libming 0.4.8, there is a use-after-free in the decompileArithmeticOp function of decompile.c. Remote attackers could use this
6.5
MEDIUM
CVE-2018-7877
all versions
There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for DOUBLE data. A Crafted in
6.5
MEDIUM
CVE-2018-7876
all versions
In libming 0.4.8, a memory exhaustion vulnerability was found in the function parseSWF_ACTIONRECORD in util/parser.c, which allows
6.5
MEDIUM
CVE-2018-7875
all versions
There is a heap-based buffer over-read in the getString function of util/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafte
6.5
MEDIUM
CVE-2018-7874
all versions
An invalid memory address dereference was discovered in strlenext in util/decompile.c in libming 0.4.8. The vulnerability causes a
6.5
MEDIUM
CVE-2018-7873
all versions
There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for INTEGER data. A Crafted i
6.5
MEDIUM
CVE-2018-7872
all versions
An invalid memory address dereference was discovered in the function getName in libming 0.4.8 for CONSTANT16 data. The vulnerabili
6.5
MEDIUM
CVE-2018-7871
all versions
There is a heap-based buffer over-read in the getName function of util/decompile.c in libming 0.4.8 for CONSTANT16 data. A crafted
8.8
HIGH
CVE-2018-7870
all versions
An invalid memory address dereference was discovered in getString in util/decompile.c in libming 0.4.8 for CONSTANT16 data. The vu
6.5
MEDIUM
CVE-2018-7869
all versions
There is a memory leak triggered in the function dcinit of util/decompile.c in libming 0.4.8, which will lead to a denial of servi
7.5
HIGH
CVE-2018-7868
all versions
There is a heap-based buffer over-read in the getName function of util/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafted
6.5
MEDIUM
CVE-2018-7867
all versions
There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 during a RegisterNumber sprin
6.5
MEDIUM
CVE-2018-7866
all versions
A NULL pointer dereference was discovered in newVar3 in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation
6.5
MEDIUM
CVE-2018-6359
<= 0.4.8
The decompileIF function (util/decompile.c) in libming through 0.4.8 is vulnerable to a use-after-free, which may allow attackers
8.8
HIGH
CVE-2018-6358
<= 0.4.8
The printDefineFont2 function (util/listfdb.c) in libming through 0.4.8 is vulnerable to a heap-based buffer overflow, which may a
8.8
HIGH
CVE-2018-6315
<= 0.4.8
The outputSWF_TEXT_RECORD function (util/outputscript.c) in libming through 0.4.8 is vulnerable to an integer overflow and resulta
8.8
HIGH
CVE-2018-5294
all versions
In libming 0.4.8, there is an integer overflow (caused by an out-of-range left shift) in the readUInt32 function (util/read.c). Re
6.5
MEDIUM
CVE-2018-5251
all versions
In libming 0.4.8, there is an integer signedness error vulnerability (left shift of a negative value) in the readSBits function (u
6.5
MEDIUM
CVE-2017-16898
<= 0.4.8
The printMP3Headers function in util/listmp3.c in libming v0.4.8 or earlier is vulnerable to a global buffer overflow, which may a
5.5
MEDIUM
CVE-2017-16883
<= 0.4.8
The outputSWF_TEXT_RECORD function in util/outputscript.c in libming <= 0.4.8 is vulnerable to a NULL pointer dereference, which m
6.5
MEDIUM
CVE-2017-11734
all versions
A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows atta
5.5
MEDIUM
CVE-2017-11733
all versions
A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c
5.5
MEDIUM
CVE-2017-11732
all versions
A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c
5.5
MEDIUM
CVE-2017-11731
all versions
An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.
5.5
MEDIUM
CVE-2017-11730
all versions
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in M
5.5
MEDIUM
CVE-2017-11729
all versions
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in M
5.5
MEDIUM
CVE-2017-11728
all versions
A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8,
5.5
MEDIUM
CVE-2017-11705
all versions
A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a
6.5
MEDIUM
CVE-2017-11704
all versions
A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to c
6.5
MEDIUM
CVE-2017-11703
all versions
A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to
6.5
MEDIUM
CVE-2017-9989
all versions
util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL poin
6.5
MEDIUM
CVE-2017-9988
all versions
The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote den
6.5
MEDIUM
CVE-2017-8782
all versions
The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service v
6.5
MEDIUM
CVE-2017-7578
all versions
Multiple heap-based buffer overflows in parser.c in libming 0.4.7 allow remote attackers to cause a denial of service (listswf app
7.8
HIGH
CVE-2016-9266
all versions
listmp3.c in libming 0.4.7 allows remote attackers to unspecified impact via a crafted mp3 file, which triggers an invalid left sh
6.5
MEDIUM
CVE-2016-9265
all versions
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero er
5.5
MEDIUM
CVE-2016-9264
all versions
Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service
5.5
MEDIUM
CVE-2016-9831
<= 0.4.7
Heap-based buffer overflow in the parseSWF_RGBA function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers
7.8
HIGH
CVE-2016-9829
<= 0.4.7
Heap-based buffer overflow in the parseSWF_DEFINEFONT function in parser.c in the listswf tool in libming 0.4.7 allows remote atta
7.8
HIGH
CVE-2016-9828
<= 0.4.7
The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL
5.5
MEDIUM
CVE-2016-9827
<= 0.4.7
The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (bu
5.5
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin