Vulnerabilities > CVE-2024-11588 - NULL Pointer Dereference vulnerability in Avlditest Libdoip 1.0.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

avlditest

CWE-476

NVD

Published: 2024-11-21

Updated: 2024-11-22

Summary

A vulnerability was found in AVL-DiTEST-DiagDev libdoip 1.0.0. It has been rated as problematic. This issue affects the function DoIPConnection::reactOnReceivedTcpMessage of the file DoIPConnection.cpp. The manipulation leads to null pointer dereference.

Vulnerable Configurations

Part	Description	Count
Application	Avlditest Avlditest Libdoip 1.0.0	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://github.com/AVL-DiTEST-DiagDev/libdoip/issues/11
https://vuldb.com/?ctiid.285659
https://vuldb.com/?id.285659
https://vuldb.com/?submit.443175