CVE-2024-20109

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Nov 4, 2024

CWE ID 787

Summary

CVE-2024-20109 is a newly identified vulnerability affecting the ccu software. This issue involves a missing bounds check leading to a possible out-of-bounds write. Consequences of this vulnerability can result in local privilege escalation, granting the attacker System execution privileges. Importantly, user interaction is not required for an attacker to exploit this vulnerability. To mitigate this risk, it is advised to apply the patch with ID ALPS09065928 as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0LSsJQ
https://www.cve.org/CVERecord?id=CVE-2024-20109
https://nvd.nist.gov/vuln/detail/CVE-2024-20109

Back to Vulnerability Database

CVE-2024-20109

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations