Heap-Use-After-Free Vulnerability in swftools 0.9.2 via removeFromTo Function

Heap-Use-After-Free Vulnerability in swftools 0.9.2 via removeFromTo Function

CVE-2024-22956 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

swftools 0.9.2 was discovered to contain a heap-use-after-free vulnerability via the function removeFromTo at swftools/src/swfc.c:838

Learn more about our Web Application Penetration Testing UK.