CVE-2024-3772

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Apr 15, 2024

Updated: Apr 26, 2024

CWE ID 269

Summary

CVE-2024-3772 is a Denial of Service (DoS) vulnerability affecting Pydanic versions below 2.4.0 and 1.10.13. An attacker can exploit this flaw by sending a crafted email string containing a malicious regular expression. Upon processing the email, the application experiences a Denial of Service condition, making it unavailable to legitimate users. This issue highlights the importance of keeping software up to date to protect against known vulnerabilities.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Micro-Star International

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wYuT4x
https://www.cve.org/CVERecord?id=CVE-2024-3772
https://nvd.nist.gov/vuln/detail/CVE-2024-3772

Back to Vulnerability Database

CVE-2024-3772

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations