CVE-2024-45288

CVE-2024-45288: Multiple vulnerabilities in libnv

Vendor Freebsd
Product FreeBSD
Weakness CWE-170
Published September 5, 2024
Last update September 20, 2024

CVSS base score

What the vulnerability does

01Description

A missing null-termination character in the last element of an nvlist array string can lead to writing outside the allocated buffer.

Key dates

02Disclosure timeline

September 5, 2024 CVE published
September 20, 2024 Record updated