CVE-2024-25629 | c-ares up to 1.26.x Null Character ares__read_line memory corruption

Inserito da Angelo Barbosa | Feb 23, 2024 | CVE

A vulnerability classified as problematic was found in c-ares up to 1.26.x. Affected by this vulnerability is the function ares__read_line of the component Null Character Handler. The manipulation leads to memory corruption.

This vulnerability is known as CVE-2024-25629. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25629 | c-ares up to 1.26.x Null Character ares__read_line memory corruption

Post correlati

CVE-2024-28848 | open-metadata OpenMetadata up to 1.2.3 validateExpression code injection

CVE-2023-47622 | Combodo iTop up to 3.0.3/3.1.0 cross site scripting (GHSA-q9cm-q7fc-frxh)

CVE-2023-6912 | M-Files Server prior 23.12.13205.0 excessive authentication

CVE-2024-0660 | Formidable Forms Plugin up to 6.7.2 on WordPress cross-site request forgery