CVE-2024-22051
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jan 4, 2024
Updated: Jan 11, 2024
CWE ID 190
Summary
CVE-2024-22051 is a vulnerability affecting CommonMarker versions below 0.23.4. An integer overflow issue in the parser can lead to heap memory corruption. Attackers can exploit this by sending specially crafted tables with marker rows containing an excessive number of columns. The result can range from information leaks to remote code execution, making this vulnerability a significant security concern.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Github Cmark-gfm
Affected Vendors
- GitHub