CVE-2024-12355

Name of the Vulnerable Software and Affected Versions SourceCodester Phone Contact Manager System version 1.0

Description A vulnerability has been found in the SourceCodester Phone Contact Manager System, classified as problematic. The issue is related to improper input validation, affecting the ContactBook::adding function of the ContactBook.cpp file. The attack must be approached locally, and the exploit has been disclosed to the public. This may allow an attacker to execute arbitrary code.

Recommendations For SourceCodester Phone Contact Manager System version 1.0, as a temporary workaround, consider disabling the ContactBook::adding function until a patch is available. Restrict access to the ContactBook.cpp file to minimize the risk of exploitation. Avoid using the function ContactBook::adding until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.