Vulnerabilities > CVE-2024-24246 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
qpdf-project
fedoraproject
CWE-787
NVD
Published: 2024-02-29
Updated: 2024-04-01

Summary

Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.

Vulnerable Configurations

Part Description Count
Application
Qpdf_Project
1
OS
Fedoraproject
3

Common Weakness Enumeration (CWE)

References