CVE-2024-34403 | uriparser up to 0.9.7 UriQuery.c ComposeQueryMallocExMm integer overflow (Issue 183)

Inserito da Angelo Barbosa | Mag 3, 2024 | CVE

A vulnerability has been found in uriparser up to 0.9.7 and classified as problematic. This vulnerability affects the function ComposeQueryMallocExMm of the file UriQuery.c. The manipulation leads to integer overflow.

This vulnerability was named CVE-2024-34403. The attack needs to be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-34403 | uriparser up to 0.9.7 UriQuery.c ComposeQueryMallocExMm integer overflow (Issue 183)

Post correlati

CVE-2024-28054 | Amavis up to 2.12.2/2.13.0 MIME-tools access control (Issue 112)

CVE-2024-0844 | Popup More Plugin up to 2.2.4 on WordPress path traversal

CVE-2021-46917 | Linux Kernel up to 5.10.31/5.11/5.11.15 idxd Privilege Escalation (e5eb9757fe4c/f7dc8f561916/ea9aadc06a9f)

CVE-2024-44555 | Tenda AX1806 1.0.0.1 setIptvInfo iptv.city.vlan stack-based overflow