CVE-2024-38309

There are multiple stack-based buffer overflow vulnerabilities in V-SFT (v6.2.2.0 and earlier), TELLUS (v4.0.19.0 and earlier), and TELLUS Lite (v4.0.19.0 and earlier). If a user opens a specially crafted file, information may be disclosed and/or arbitrary code may be executed.
Configurations

No configuration.

History

29 Nov 2024, 21:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
Summary
  • (es) Existen múltiples vulnerabilidades de desbordamiento de búfer basadas en pila en V-SFT (v6.2.2.0 y anteriores), TELLUS (v4.0.19.0 y anteriores) y TELLUS Lite (v4.0.19.0 y anteriores). Si un usuario abre un archivo especialmente manipulado, se puede divulgar información y/o ejecutar código arbitrario.

28 Nov 2024, 03:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-28 03:15

Updated : 2024-11-29 21:15


NVD link : CVE-2024-38309

Mitre link : CVE-2024-38309

CVE.ORG link : CVE-2024-38309


JSON object : View

Products Affected

No product.

CWE
CWE-121

Stack-based Buffer Overflow