CVE-2024-43700

Published: Aug 29, 2024

Modified: Nov 30, 2024

PUBLISHED

Description

xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment.

Vendor	Product	Versions
Philip Hazel	xfpt	affected `prior to 1.01`

References

https://github.com/PhilipHazel/xfpt

https://github.com/PhilipHazel/xfpt/commit/a690304bbd3fd19e9dfdad50dcc87ad829f744e4

https://jvn.jp/en/vu/JVNVU96498690/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-43700

Description

Affected Products

References