CVE-2024-20127

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 2, 2024
CWE ID 125

Summary

CVE-2024-20127 is a vulnerability affecting telephony systems. It involves a missing bounds check that allows for an out-of-bounds read. Consequences of this issue include a remote denial of service attack, which can be executed without requiring additional privileges or user interaction. The vulnerability has been assigned the patch ID ALPS09289881 and the issue ID MSV-2023.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share