exploitDog

CVE-2024-24262

Опубликовано: 05 фев. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_uac_stop_timer function at /uac/sip-uac-transaction.c.

Ссылки

https://github.com/LuMingYinDetect/media-server_detect/blob/main/media_server_detect_1.md
Exploit
Third Party Advisory
https://github.com/LuMingYinDetect/media-server_detect/blob/main/media_server_detect_1.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ireader:media-server:1.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00186

Низкий

7.5 High

CVSS3

Дефекты

CWE-416

CWE-416

Связанные уязвимости

GHSA-vh8x-63x5-57cx

CVSS3: 7.5

github

около 2 лет назад

media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_uac_stop_timer function at /uac/sip-uac-transaction.c.

EPSS

Процентиль: 40%

0.00186

Низкий

7.5 High

CVSS3

Дефекты

CWE-416

CWE-416