CVE-2024-11097

Published: Nov 12, 2024Modified: Nov 14, 2024

4.8

Vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: CNA (Secondary)

Description

A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Affected (1)

Products: Razormist: Student Record Management System

1 product

Student Record Management System

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Razormist Student Record Management System	Version 1.0

Related CWEs

Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

Loop with Unreachable Exit Condition ('Infinite Loop')

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

References (5)

https://github.com/Hacker0xone/CVE/issues/5

Source: cna@vuldb.com

ExploitThird Party Advisory

https://vuldb.com/?ctiid.283918

Source: cna@vuldb.com

Permissions Required

https://vuldb.com/?id.283918

Source: cna@vuldb.com

Permissions Required

https://vuldb.com/?submit.441237

Source: cna@vuldb.com

Third Party Advisory

https://www.sourcecodester.com/

Source: cna@vuldb.com

Product

Timeline

No history available yet.