CVE-2024-25442

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Feb 9, 2024

Updated: Feb 20, 2024

CWE ID 787

Summary

CVE-2024-25442 is a newly disclosed vulnerability that impacts the HuginBase::PanoramaMemento::loadPTScript function in Hugin v2022.0.0. This issue permits attackers to exploit a heap buffer overflow by parsing a specially crafted image. Successful exploitation could lead to arbitrary code execution, potentially granting attackers unauthorized access to the system or sensitive data. Users are advised to update to the latest version of Hugin to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ubkyul
https://www.cve.org/CVERecord?id=CVE-2024-25442
https://nvd.nist.gov/vuln/detail/CVE-2024-25442

Back to Vulnerability Database

CVE-2024-25442

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations