CVE-2024-22194

CVSS 3.1 Score 2.8 of 10 (low)

Details

Published Jan 11, 2024
Updated: Jan 19, 2024
CWE ID 337
CWE ID 215

Summary

CVE-2024-22194 is an information leakage vulnerability that affects the cdo-local-uuid project at version 0.4.0 and the unpatched versions of case-utils from 0.5.0 to 0.15.0. The vulnerability is related to the Python function cdo_local_uuid.local_uuid() and its original implementation in case_utils.local_uuid(). This vulnerability has a low base severity with a base score of 2.8 and a low exploitability score of 1.3, requiring local access and user interaction to be exploited. It poses a potential danger to organizations as it can lead to information leakage, although the impact on integrity and confidentiality is minimal. To remediate this vulnerability, organizations should update their cdo-local-uuid project to a version beyond 0.4.0 or patch their case-utils versions to address the issue.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-22194 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options