PT-2024-23818 · Open Networking Foundation · Libfluid
Gabriele Quagliarella
·
Published
2024-09-18
·
Updated
2024-09-20
·
CVE-2024-31177
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
libfluid version 0.1.0
Description
The issue is an Out-of-bounds Read vulnerability in the Open Networking Foundation (ONF) libfluid, specifically in the libfluid msg modules. It is associated with the program routines
fluid msg::of13::TableFeaturePropActions::unpack. This vulnerability poses a risk of remote exploit.Recommendations
For libfluid version 0.1.0, patch immediately to mitigate the risk of exploitation. Additionally, monitor for signs of compromise.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Libfluid