exploitDog

CVE-2024-22915

Опубликовано: 19 янв. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.

Ссылки

https://github.com/matthiaskramm/swftools/issues/215
Exploit
Third Party Advisory
https://github.com/matthiaskramm/swftools/issues/215
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:swftools:swftools:0.9.2:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00109

Низкий

7.8 High

CVSS3

Дефекты

CWE-416

CWE-416

Связанные уязвимости

CVE-2024-22915

CVSS3: 7.8

ubuntu

около 2 лет назад

A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.

CVE-2024-22915

CVSS3: 7.8

debian

около 2 лет назад

A heap-use-after-free was found in SWFTools v0.9.2, in the function sw ...

GHSA-26p5-hq43-q649

CVSS3: 7.8

github

около 2 лет назад

A heap-use-after-free was found in SWFTools v0.9.2, in the function swf_DeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution.

EPSS

Процентиль: 30%

0.00109

Низкий

7.8 High

CVSS3

Дефекты

CWE-416

CWE-416