CVE-2021-42197
First published: Tue May 31 2022(Updated: )
An issue was discovered in swftools through 20201222 through a memory leak in the swftools when swfdump is used. It allows an attacker to cause code execution.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SWFTools | <=2020-12-22 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-42197?
CVE-2021-42197 is a vulnerability in swftools that allows an attacker to cause code execution through a memory leak when swfdump is used.
How severe is CVE-2021-42197?
CVE-2021-42197 has a severity of high, with a CVSS score of 7.8.
What software is affected by CVE-2021-42197?
Swftools versions before 20201222 are affected by CVE-2021-42197.
How can an attacker exploit CVE-2021-42197?
An attacker can exploit CVE-2021-42197 by using swfdump to trigger a memory leak and execute malicious code.
Is there a fix for CVE-2021-42197?
At the time of writing, there is no known fix for CVE-2021-42197. It is recommended to update to a newer version of Swftools if one becomes available.
- agent/author
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/swftools
- canonical/swftools
- version/swftools/2020-12-22