CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-5251

In libming 0.4.8, there is an integer signedness error vulnerability (left shift of a negative value) in the readSBits function (util/read.c). Remote attackers can leverage this vulnerability to cause a denial of service via a crafted swf file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

https://github.com/libming/libming/issues/97
https://lists.debian.org/debian-lts-announce/2018/03/msg00008.html
https://security.gentoo.org/glsa/201904-24
https://github.com/libming/libming/issues/97
https://lists.debian.org/debian-lts-announce/2018/03/msg00008.html
https://security.gentoo.org/glsa/201904-24

Products affected by CVE-2018-5251

Libming » Libming » Version: 0.4.8

cpe:2.3:a:libming:libming:0.4.8
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-5251

Products

Pricing

Contact Us