CVSS 3.1 Score 5.5 of 10 (medium)


Published Feb 6, 2024
Updated: Feb 14, 2024
CWE ID 787
CWE ID 122


CVE-2024-0684 is a vulnerability found in the GNU coreutils "split" program. It is categorized as a heap overflow vulnerability, allowing for a potential application crash and denial of service. The affected products include urPuuV, urPuuU, and urPuuW. The vulnerability has a base severity rating of MEDIUM, with a base score of 5.5, and an impact score of 3.6. The exploitability score is 1.8, indicating a relatively low level of difficulty for exploitation. The attack vector is considered to be local, with low privileges required and no user interaction necessary. The confidentiality and integrity impacts are rated as NONE, but the availability impact is classified as HIGH. No specific remediation instructions or potential dangers to organizations are mentioned in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0684 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options