CVE-2024-39684

Name of the Vulnerable Software and Affected Versions Tencent RapidJSON (affected versions not specified)

Description The issue is related to an integer overflow in the GenericReader::ParseNumber() function when parsing JSON text from a stream. This can be exploited by sending a crafted file to the victim, which when opened, triggers the integer overflow, leading to elevation of privilege. The vulnerability is associated with the include/rapidjson/reader.h file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.