CVE-2024-49410

Name of the Vulnerable Software and Affected Versions libswmfextractor.so versions prior to SMR Dec-2024 Release 1

Description The issue is an out-of-bounds write in libswmfextractor.so, allowing local attackers to execute arbitrary code. This enables attackers to potentially gain control over the system. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions prior to SMR Dec-2024 Release 1, update to SMR Dec-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the libswmfextractor.so library until a patch is available.