CVE-2024-1013

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Mar 18, 2024

CWE ID 823

Summary

CVE-2024-1013 is a newly identified stack write vulnerability affecting unixODBC on 64-bit architectures. The issue arises when the caller supplies only 4 bytes, but the callee attempts to write 8 bytes, leading to an out-of-bounds condition. This flaw can be exploited to execute arbitrary code or cause a denial-of-service. While this vulnerability may go unnoticed on little-endian systems, it can be exploited on big-endian architectures resulting in potential security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uUrswD
https://www.cve.org/CVERecord?id=CVE-2024-1013
https://nvd.nist.gov/vuln/detail/CVE-2024-1013

Back to Vulnerability Database

CVE-2024-1013

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations