CVE-2024-41564

Published: Aug 28, 2024Modified: Mar 26, 2025

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

EMI v.1.1.10 and before, fixed in v.1.1.11, contains an Improper Validation of Specified Index, Position, or Offset in Input vulnerability. The specific issue is a failure to validate slot index and decrement stack count in EMI mod for Minecraft, which allows in-game item duplication.

Affected (1)

Products: Emilyploszaj: Emi

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Emilyploszaj Emi	Up to 1.1.10

Related CWEs

Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

References (2)

https://gist.github.com/apple502j/6d691b62c37fc37b03b0784917064df6

Source: cve@mitre.org

Third Party Advisory

https://github.com/emilyploszaj/emi/blob/1.21/xplat/src/main/java/dev/emi/emi/network/FillRecipeC2SPacket.java

Source: cve@mitre.org

Issue Tracking

Timeline

No history available yet.