← back
CVE-2024-10559

SourceCodester Airport Booking Management System details buffer overflow

CVSS 4.8 MEDIUMEPSS 0.4%CWE-119CWE-120
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.8EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
31 Oct 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified as critical. Affected by this issue is the function Details. The manipulation of the argument passport/name leads to buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Affected products
SourceCodester · Airport Booking Management System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/CveSecLook/cve/issues/64https://vuldb.com/?ctiid.282560https://vuldb.com/?id.282560https://vuldb.com/?submit.433262https://www.sourcecodester.com/