CVE-2024-21646

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 9, 2024

Updated: Jan 12, 2024

CWE ID 94

CWE ID 190

Summary

CVE-2024-21646 is a vulnerability affecting Azure uAMQP, a C library for Advanced Message Queuing Protocol (AMQP) 1.0 used by various clients for AMQP communication. The vulnerability stems from an integer overflow or wraparound and memory safety issue in the library. maliciously crafted binary type data can trigger these issues, potentially resulting in remote code execution. This critical flaw has been addressed in the release 2024-01-01 patch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uE8FkK
https://www.cve.org/CVERecord?id=CVE-2024-21646
https://nvd.nist.gov/vuln/detail/CVE-2024-21646

Back to Vulnerability Database

CVE-2024-21646

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations