CVE-2024-32613 | HDF5 up to 1.14.3 H5HLcache.c H5HL__fl_deserialize heap-based overflow

Inserito da Angelo Barbosa | Mag 9, 2024 | CVE

A vulnerability, which was classified as critical, has been found in HDF5 up to 1.14.3. This issue affects the function H5HL__fl_deserialize of the file H5HLcache.c. The manipulation leads to heap-based buffer overflow.

The identification of this vulnerability is CVE-2024-32613. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-32613 | HDF5 up to 1.14.3 H5HLcache.c H5HL__fl_deserialize heap-based overflow

Post correlati

CVE-2024-1661 | Totolink X6000R 9.4.0cu.852_B20230719 /etc/shadow hard-coded credentials

CVE-2024-32932 | Johnson Controls Illustra Essentials Gen 4 up to 4.01.02.10.5982 Web Interface storing passwords in a recoverable format (icsa-24-179-07)

CVE-2023-51612 | Kofax Power PDF JP2 File Parser use after free (ZDI-23-1913)

CVE-2023-51450 | BaserCMS up to 5.0.8 os command injection (GHSA-77fc-4cv5-hmfr)