CVE-2024-3024

CVSS 3.1 Score 7.7 of 10 (high)

Details

Published Mar 28, 2024

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2024-3024 is a recently disclosed vulnerability affecting AppNeta tcpreplay up to version 4.4.4. This issue, classified as problematic, is located in the function get_layer4_v6 of the file /tcpreplay/src/common/get.c. The vulnerability results in a heap-based buffer overflow, which can be exploited locally. The exploit code has been made public, increasing the risk for potential attacks. Vendor response has been lacking, with no acknowledgement or patch released as of yet. The identifier VDB-258333 has been assigned to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vI9NIP
https://www.cve.org/CVERecord?id=CVE-2024-3024
https://nvd.nist.gov/vuln/detail/CVE-2024-3024

Back to Vulnerability Database

CVE-2024-3024

CVSS 3.1 Score 7.7 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations