CVE-2024-52949

Опубликовано: 16 дек. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.

Ссылки

https://github.com/iptraf-ng/iptraf-ng/releases/tag/v1.2.1
Release Notes
https://www.gruppotim.it/it/footer/red-team.html
Third Party Advisory
Exploit
https://www.gruppotim.it/it/footer/red-team.html
Third Party Advisory
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:iptraf-ng:iptraf-ng:1.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 25%

0.00084

Низкий

7.5 High

CVSS3

Дефекты

CWE-120

Связанные уязвимости

CVE-2024-52949

CVSS3: 7.5

ubuntu

11 месяцев назад

iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.

CVE-2024-52949

CVSS3: 6.6

redhat

11 месяцев назад

iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.

CVE-2024-52949

CVSS3: 9.8

msrc

10 месяцев назад

Описание отсутствует

CVE-2024-52949

CVSS3: 7.5

debian

11 месяцев назад

iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, th ...

GHSA-94mp-gc2x-rqm6

CVSS3: 9.8

github

11 месяцев назад

iptraf-ng 1.2.1 has a stack-based buffer overflow.

EPSS

Процентиль: 25%

0.00084

Низкий

7.5 High

CVSS3

Дефекты

CWE-120