CVE-2024-0581

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Jan 23, 2024

CWE ID 400

Summary

CVE-2024-0581 is a newly discovered vulnerability affecting Sandsprite Scdbg.exe version 1.0. This issue involves an Uncontrolled Resource Consumption weakness, which enables an attacker to send a maliciously crafted payload to the '/foff' parameter. The attacker can then cause the application to shut down, potentially allowing malware to evade detection during a scan. This vulnerability could potentially be exploited to disrupt services or gain unauthorized access. Users are advised to update to the latest version of Sandsprite Scdbg to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uKXnQ0
https://www.cve.org/CVERecord?id=CVE-2024-0581
https://nvd.nist.gov/vuln/detail/CVE-2024-0581

Back to Vulnerability Database

CVE-2024-0581

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations