CVE-2021-42203

Published June 2nd, 2022

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

An issue was discovered in swftools through 20201222. A heap-use-after-free exists in the function swf_FontExtract_DefineTextCallback() located in swftext.c. It allows an attacker to cause code execution.

swftools/swftools

Utilities for editing and generating Adobe Flash (SWF) files.

GitHub

299