CVE-2024-25178

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions: LuaJIT versions prior to 2.1

Description: The issue is an out-of-bounds read in the stack-overflow handler in lj state.c.

Recommendations: For versions prior to 2.1, update to a version that contains a fix for this issue.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

AZL-65373

AZL-65391

AZL-65424

CVE-2024-25178

DLA-4283-1

ECHO-6F63-3619-1EC8

SUSE-SU-2025:02886-1

SUSE-SU-2025:03378-1

SUSE-SU-2025_03378-1

Debian

Luajit

Suse