CVE-2024-45287

CVE-2024-45287: Multiple vulnerabilities in libnv

Vendor Freebsd
Product FreeBSD
Weakness CWE-131
Published September 5, 2024
Last update September 26, 2024

CVSS base score

What the vulnerability does

01Description

A malicious value of size in a structure of packed libnv can cause an integer overflow, leading to the allocation of a smaller buffer than required for the parsed data.

Key dates

02Disclosure timeline

September 5, 2024 CVE published
September 26, 2024 Record updated