CVE-2024-36124 | dain snappy up to 0.4 Decompression sun.misc.Unsafe out-of-bounds (GHSA-8wh2-6qhj-h7j9)

Inserito da Angelo Barbosa | Giu 3, 2024 | CVE

A vulnerability, which was classified as problematic, was found in dain snappy up to 0.4. Affected is the function sun.misc.Unsafe of the component Decompression Handler. The manipulation leads to out-of-bounds read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2024-36124. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36124 | dain snappy up to 0.4 Decompression sun.misc.Unsafe out-of-bounds (GHSA-8wh2-6qhj-h7j9)

Post correlati

CVE-2024-28091 | Technicolor TC8715D 01.EF.04.38.00-180405-S-FF9-D RSE-TC8717T User Defined Service managed_services_add.asp cross site scripting

CVE-2024-0576 | Totolink LR1200GB 9.1.0u.6619_B20230130 /cgi-bin/cstecgi.cgi setIpPortFilterRules sPort stack-based overflow

CVE-2024-8824 | PDF-XChange Editor JB2 File Parser out-of-bounds (ZDI-24-1247)

CVE-2024-24062 | springboot-manager 1.6 /sys/role cross site scripting