CVE-2024-1899

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Feb 26, 2024

Updated: Aug 1, 2024

CWE ID 674

Summary

CVE-2024-1899 is a newly disclosed vulnerability that affects versions of Showdownjs below 2.1.0. This issue lies within the anchors subparser, enabling remote attackers to initiate denial of service conditions. By exploiting this weakness, adversaries can cause disruptive effects on targeted systems. The precise implications and potential mitigations are currently under investigation. System administrators are urged to upgrade to the latest Showdownjs version to minimize exposure to this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uqZ7Hx
https://www.cve.org/CVERecord?id=CVE-2024-1899
https://nvd.nist.gov/vuln/detail/CVE-2024-1899

Back to Vulnerability Database

CVE-2024-1899

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations