Lucene search

K

[email protected]CVE-2024-34953

HistoryMay 20, 2024 - 2:15 p.m.

CVE-2024-34953

2024-05-2014:15:09

[email protected]

web.nvd.nist.gov

26

taurusxin

ncmdump

dos

memory exhaustion

crafted file

nvd

6.7 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

An issue in taurusxin ncmdump v1.3.2 allows attackers to cause a Denial of Service (DoS) via memory exhaustion by supplying a crafted .ncm file

References

github.com/Helson-S/FuzzyTesting/blob/master/ncmdump/dos_mmExhausted/dos_mmExhausted.assets/image-20240505161831080.png

github.com/Helson-S/FuzzyTesting/blob/master/ncmdump/dos_mmExhausted/dos_mmExhausted.md

github.com/Helson-S/FuzzyTesting/blob/master/ncmdump/dos_mmExhausted/poc/I7K9QM~F

github.com/Helson-S/FuzzyTesting/tree/master/ncmdump/dos_mmExhausted

github.com/Helson-S/FuzzyTesting/tree/master/ncmdump/dos_mmExhausted/poc

github.com/taurusxin/ncmdump/issues/19

6.7 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

Related for CVE-2024-34953

nvd1 vulnrichment1 cvelist1