CVE-2024-22919

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 19, 2024

Updated: Jan 25, 2024

CWE ID 120

Summary

CVE-2024-22919 is a newly identified global-buffer-overflow vulnerability affecting swftools0.9.2. This issue is located in the function "parseExpression" at "swftools/src/swfc.c:2587." An attacker could potentially exploit this vulnerability by supplying specially crafted input to trigger the buffer overflow and execute arbitrary code. Users of swftools0.9.2 are advised to upgrade to a patched version or take other mitigating measures to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Swftools

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uNVhti
https://www.cve.org/CVERecord?id=CVE-2024-22919
https://nvd.nist.gov/vuln/detail/CVE-2024-22919

Back to Vulnerability Database

CVE-2024-22919

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations