← Back

CVE-2024-45287

nvd nist
Published: Sep 5, 2024Modified: Jun 17, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

A malicious value of size in a structure of packed libnv can cause an integer overflow, leading to the allocation of a smaller buffer than required for the parsed data.

Affected (25)

Products: Freebsd: Freebsd
1 product
Freebsd
Configuration A
25 vulnerable
Vulnerable SoftwareAffected Versions
Freebsd
From 13.0 to 13.3
Version 13.3
Version 13.3 p1
Version 13.3 p2
Version 13.3 p3
Version 13.3 p4
Version 13.3 p5
Version 13.4 beta3
Version 14.0
Version 14.0 beta5
Version 14.0 p1
Version 14.0 p2
Version 14.0 p3
Version 14.0 p4
Version 14.0 p5
Version 14.0 p6
Version 14.0 p7
Version 14.0 p8
Version 14.0 p9
Version 14.0 rc3
Version 14.0 rc4-p1
Version 14.1
Version 14.1 p1
Version 14.1 p2
Version 14.1 p3

References (2)

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.