Lucene search

[email protected]CVE-2024-24258

HistoryFeb 05, 2024 - 6:15 p.m.

CVE-2024-24258

2024-02-0518:15:52

CWE-401

[email protected]

web.nvd.nist.gov

mupdf

v1.23.9

memory leak

cve-2024-24258

glutaddsubmenu

vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

20.0%

JSON

freeglut 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddSubMenu function.

Affected configurations

NVD

Node

artifexmupdfMatch1.23.9

CPENameOperatorVersion
artifex:mupdfartifex mupdfeq1.23.9

CPE	Name	Operator	Version
artifex:mupdf	artifex mupdf	eq	1.23.9

References

github.com/freeglut/freeglut/pull/155

github.com/yinluming13579/mupdf_defects/blob/main/mupdf_detect_1.md

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IBAWX3HMMZVAWJZ3U6VOAYYOYJCN3IS/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T43DAHPIWMGN54E4I6ABLHNYHZSTX7H5/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

20.0%

JSON

Related for CVE-2024-24258

nvd1 veracode1 debiancve1 ubuntucve1 cbl_mariner1 osv4 prion1 redhatcve1 cvelist1 nessus9 openvas3 fedora2 redhat2 almalinux2 rocky1 oraclelinux2 mageia1