CVE-2024-27280 | StringIO 3.0.1/3.0.2 ungetbyte/ungetc buffer overflow

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability was found in StringIO 3.0.1/3.0.2. It has been rated as critical. This issue affects the function ungetbyte/ungetc. The manipulation leads to buffer overflow.

The identification of this vulnerability is CVE-2024-27280. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27280 | StringIO 3.0.1/3.0.2 ungetbyte/ungetc buffer overflow

Related Posts

CVE-2023-45286 | go-resty prior 2.10.0 HTTP Request sync.Pool.Put information disclosure

CVE-2024-36241 | Mattermost up to 8.1.12/9.5.3/9.6.1 Playbook Add Slash Command access control

CVE-2023-6614 | Typecho 1.2.1 Page /admin/manage-pages.php backdoor

CVE-2024-42238 | Linux Kernel up to 6.1.99/6.6.40/6.9.9 cs_dsp cs_dsp_power_up infinite loop