Swftools

swftools

Vendor: Swftools • 126 CVEs

CVEs (126)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-6271 1Swftools 1Swftools Apr 29, 2026 Jun 19, 2025 1.9 LOW· v4 3.3 LOW· v3 1.7 LOW· v2 A vulnerability, which was classified as problematic, was found in swftools up to 0.9.2. This affects the function wav_convert2mono in the library lib/wav.c of the component wav2swf. The manipulation leads to out-of-boun...Show more A vulnerability, which was classified as problematic, was found in swftools up to 0.9.2. This affects the function wav_convert2mono in the library lib/wav.c of the component wav2swf. The manipulation leads to out-of-bounds read. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-28458 1Swftools 1Swftools Jun 10, 2025 Apr 11, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to crash the appliation via the function compileSWFActionCode in action/actioncompiler.c.
CVE-2024-26339 1Swftools 1Swftools Apr 1, 2025 Mar 5, 2024 N/A· v4 9.1 CRITICAL· v3 N/A· v2 swftools v0.9.2 was discovered to contain a strcpy parameter overlap via /home/swftools/src/swfc+0x48318a.
CVE-2024-26337 1Swftools 1Swftools Apr 1, 2025 Mar 5, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 swftools v0.9.2 was discovered to contain a segmentation violation via the function s_font at swftools/src/swfc.c.
CVE-2024-26335 1Swftools 1Swftools Apr 1, 2025 Mar 5, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 swftools v0.9.2 was discovered to contain a segmentation violation via the function state_free at swftools/src/swfc-history.c.
CVE-2024-26334 1Swftools 1Swftools Apr 1, 2025 Mar 5, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 swftools v0.9.2 was discovered to contain a segmentation violation via the function compileSWFActionCode at swftools/lib/action/actioncompiler.c.
CVE-2024-26333 1Swftools 1Swftools Apr 1, 2025 Mar 5, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 swftools v0.9.2 was discovered to contain a segmentation violation via the function free_lines at swftools/lib/modules/swfshape.c.
CVE-2024-25165 1Swftools 1Swftools May 5, 2025 Feb 14, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A global-buffer-overflow vulnerability was found in SWFTools v0.9.2, in the function LineText at lib/swf5compiler.flex.
CVE-2024-22957 1Swftools 1Swftools Jun 20, 2025 Jan 19, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 swftools 0.9.2 was discovered to contain an Out-of-bounds Read vulnerability via the function dict_do_lookup in swftools/lib/q.c:1190.
CVE-2024-22956 1Swftools 1Swftools May 30, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838
CVE-2024-22955 1Swftools 1Swftools Jun 20, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576.
CVE-2024-22919 1Swftools 1Swftools Jun 5, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587.
CVE-2024-22915 1Swftools 1Swftools May 30, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.
CVE-2024-22914 1Swftools 1Swftools Nov 21, 2024 Jan 19, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service.
CVE-2024-22913 1Swftools 1Swftools May 30, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A heap-buffer-overflow was found in SWFTools v0.9.2, in the function swf5lex at lex.swf5.c:1321. It allows an attacker to cause code execution.
CVE-2024-22912 1Swftools 1Swftools Jun 17, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution.
CVE-2024-22911 1Swftools 1Swftools Jun 5, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A stack-buffer-underflow vulnerability was found in SWFTools v0.9.2, in the function parseExpression at src/swfc.c:2602.
CVE-2024-22920 1Swftools 1Swftools Nov 21, 2024 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 swftools 0.9.2 was discovered to contain a heap-use-after-free via the function bufferWriteData in swftools/lib/action/compile.c.
CVE-2024-22562 1Swftools 1Swftools Jun 16, 2025 Jan 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 swftools 0.9.2 was discovered to contain a Stack Buffer Underflow via the function dict_foreach_keyvalue at swftools/lib/q.c.
CVE-2023-37644 1Swftools 1Swftools Jun 3, 2025 Jan 11, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in png_read_chunk in lib/png.c.

12 3 4 5 6 7 Next