CVE-2024-24149
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Feb 29, 2024
Updated: Aug 13, 2024
CWE ID 401
Summary
CVE-2024-24149 is a memory leak vulnerability affecting parseSWF_GLYPHENTRY in libming v0.4.8. An attacker can exploit this issue by crafting a SWF file to cause excessive memory usage, resulting in a denial of service. The vulnerability stems from an improper handling of input data in the parsing function. Users are advised to upgrade to a patched version of libming to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share