CVE-2024-34952 | NetEase taurusxin ncmdump 1.3.2 NCM File /src/ncmcrypt.cpp FixMetadata memory corruption

Inserito da Angelo Barbosa | Mag 20, 2024 | CVE

A vulnerability classified as critical has been found in NetEase taurusxin ncmdump 1.3.2. Affected is the function NeteaseCrypt::FixMetadata of the file /src/ncmcrypt.cpp of the component NCM File Handler. The manipulation leads to memory corruption.

This vulnerability is traded as CVE-2024-34952. Access to the local network is required for this attack. There is no exploit available.

CVE-2024-34952 | NetEase taurusxin ncmdump 1.3.2 NCM File /src/ncmcrypt.cpp FixMetadata memory corruption

Post correlati

CVE-2024-21497 | greenpau caddy-security redirect_url (Issue 268)

CVE-2024-40116 | Solar-Log 1000 prior 2.8.2 export.html cleartext storage

CVE-2024-25466 | React Native Document Picker up to 9.1.0 path traversal

CVE-2024-7041 | open-webui up to 0.3.8 API Endpoint update unnecessary privileges