CVE-2024-25318

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 9, 2024

Updated: Feb 12, 2024

CWE ID 89

Summary

CVE-2024-25003 is a stack-based buffer overflow vulnerability affecting KiTTY version 0.76.1.13 and earlier. The issue arises due to insufficient input sanitization and bounds checking, enabling an attacker to overwrite adjacent memory by providing a maliciously crafted hostname. Ultimately, this leads to arbitrary code execution, posing a significant security risk to users of the affected software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Hotel Management System Project

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ubkAUE
https://www.cve.org/CVERecord?id=CVE-2024-25318
https://nvd.nist.gov/vuln/detail/CVE-2024-25318

Back to Vulnerability Database

CVE-2024-25318

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations