CVE-2024-51502

CVSS 3.1 Score 0.0 of 10 (low)

Details

Published Nov 4, 2024

Updated: Nov 5, 2024

CWE ID 755

Summary

CVE-2024-51502 is a vulnerability affecting the `loona-hpack` library in the loona HTTP implementation in Rust. This library shares the same issue as the original `hpack` library, which is detailed in issue #11. The vulnerability allows for the decoding of untrusted input using the Decoder function, potentially leading to an exploit. Users who have not yet upgraded to release version 0.4.3 are at risk and are advised to do so as soon as possible. There are currently no known workarounds for this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/z8WazL
https://www.cve.org/CVERecord?id=CVE-2024-51502
https://nvd.nist.gov/vuln/detail/CVE-2024-51502

Back to Vulnerability Database

CVE-2024-51502

CVSS 3.1 Score 0.0 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations