CVE-2024-37017 | asdcplib 2.13.1 AS_DCP_TimedText.cpp MD_to_TimedText_TDesc heap-based overflow (Issue 138)

Posted by Angelo Barbosa | May 31, 2024 | CVE

A vulnerability was found in asdcplib 2.13.1 and classified as critical. This issue affects the function ASDCP::TimedText::MXFReader::h__Reader::MD_to_TimedText_TDesc of the file AS_DCP_TimedText.cpp. The manipulation leads to heap-based buffer overflow.

The identification of this vulnerability is CVE-2024-37017. Access to the local network is required for this attack. There is no exploit available.

CVE-2024-37017 | asdcplib 2.13.1 AS_DCP_TimedText.cpp MD_to_TimedText_TDesc heap-based overflow (Issue 138)

Related Posts

CVE-2023-50477 | NOS Client 0.6.6 getRPCEndpoint.js Privilege Escalation (Issue 1485)

CVE-2022-41677 | Bosch Camera access control

CVE-2024-44557 | Tenda AX1806 1.0.0.1 setIptvInfo iptv.stb.mode stack-based overflow

CVE-2024-3332 | zephyrproject-rtos Zephyr up to 3.6 BLE null pointer dereference