CVE-2024-12186

Name of the Vulnerable Software and Affected Versions code-projects Hotel Management System version 1.0

Description A vulnerability was found in the code-projects Hotel Management System, affecting some unknown processing of the file hotelnew.c of the component Available Room Handler. The manipulation of the argument admin entry leads to a stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

Recommendations For code-projects Hotel Management System version 1.0, as a temporary workaround, consider restricting access to the admin entry argument in the Available Room Handler component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.