CVE-2024-20863

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published May 7, 2024

Summary

CVE-2024-20863 is an out-of-bounds write vulnerability that affects the SNAP software in the HAL component prior to the SMR May-2024 Release 1. This issue permits local, privileged attackers to execute arbitrary code by writing beyond the allocated memory in the affected software. This vulnerability poses a significant risk as it can be exploited to gain unauthorized system access and potentially lead to serious data breaches or system compromises. It is strongly recommended that users upgrade to the latest SNAP release to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vzfc9B
https://www.cve.org/CVERecord?id=CVE-2024-20863
https://nvd.nist.gov/vuln/detail/CVE-2024-20863

Back to Vulnerability Database

CVE-2024-20863

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations