CVE-2024-22915 | SWFTools 0.9.2 rfxswf.c swf_DeleteTag use after free (Issue 215)

Posted by Angelo Barbosa | Jan 19, 2024 | CVE

A vulnerability, which was classified as critical, was found in SWFTools 0.9.2. This affects the function swf_DeleteTag of the file rfxswf.c. The manipulation leads to use after free.

This vulnerability is uniquely identified as CVE-2024-22915. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-22915 | SWFTools 0.9.2 rfxswf.c swf_DeleteTag use after free (Issue 215)

Related Posts

CVE-2024-28230 | JetBrains YouTrack prior 2024.1.25893 Workflow authorization

CVE-2024-32736 | CyberPower PowerPanel Enterprise up to 2.8.2 MCUDBHelper query_utask_verbose sql injection

CVE-2023-6922 | acurax Under Construction Maintenance Mode Plugin up to 2.6 on WordPress Email Address acx_csma_subscribe_ajax information disclosure

CVE-2023-51135 | TOTOLINK X2000R Gh 1.0.0-B20230221.0948.web formPasswordSetup stack-based overflow