CVE-2024-23084

EPSS 0.08%
Veröffentlicht 08.04.2024 23:15:07
Zuletzt bearbeitet 18.06.2025 18:56:07
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Apfloat v1.10.1 was discovered to contain an ArrayIndexOutOfBoundsException via the component org.apfloat.internal.DoubleCRTMath::add(double[], double[]). NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability. The submission may have been based on a tool that is not sufficiently robust for vulnerability identification.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mikkotommila ≫ Apfloat Version1.10.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.239

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

http://apfloat.com

Product

https://github.com/mtommila/apfloat

Product

https://gist.github.com/LLM4IG/5b7dd0a87db14d9c95d4c0ea62e0195b

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-23084

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-23084

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-23084

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-23084