CVE-2024-23313

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 20, 2024

Updated: Apr 2, 2024

CWE ID 191

Summary

CVE-2024-23313 is a newly disclosed vulnerability affecting The Biosig Project's libbiosig 2.5.0 and Master Branch (ab0ee111). This issue involves an integer underflow in the sopen_FAMOS_read functionality, which can be exploited by a malicious .famos file. The vulnerability results in an out-of-bounds write, enabling arbitrary code execution for attackers. By providing a specially crafted .famos file, an adversary can successfully trigger this weakness and potentially gain unauthorized access to affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uQP5p4
https://www.cve.org/CVERecord?id=CVE-2024-23313
https://nvd.nist.gov/vuln/detail/CVE-2024-23313

Back to Vulnerability Database

CVE-2024-23313

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations