← voltar
CVE-2024-52065

Potential stack buffer write overflow in Persistence Service while parsing malicious environment variable on non-Windows systems

CVSS 6.9 MEDIUMEPSS 0.2%CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in RTI Connext Professional on non-Windows (Persistence Service) allows Buffer Overflow via Environment Variables.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from 6.1.1.2 before 6.1.2.21, from 5.3.1.40 before 5.3.1.41.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N
Produtos afetados
RTI · Connext Professional

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.rti.com/vulnerabilities/#cve-2024-52065