CVE-2024-22181

Exploit

EPSS 0.1%
Veröffentlicht 28.05.2024 14:15:09
Zuletzt bearbeitet 12.02.2025 16:15:53
Quelle talos-cna@cisco.com
CVE-Watchlists
Login
Unerledigt
Login

An out-of-bounds write vulnerability exists in the readNODE functionality of libigl v2.5.0. A specially crafted .node file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Libigl ≫ Libigl Version2.5.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.1%	0.282

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
talos-cna@cisco.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1930

Third Party Advisory

Exploit

https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1930

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-22181

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-22181

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-22181

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-22181