CVE-2024-31446
CVSS 3.1 Score 7.7 of 10 (high)
Details
Summary
CVE-2024-31446 is a vulnerability affecting the OpenComputers mod in Minecraft. This mod, which adds programmable computers and robots to the game, contains a flaw that allows users to cause a Computer thread to get stuck in the Lua VM. As a result, the Server thread becomes blocked, necessitating a forced server shutdown. The issue can be exploited using any device in the mod and requires the execution of Lua code. The vulnerability, which arises when using the native Lua library, is resolved in version 1.8.4. The GregTech: New Horizons modpack, which uses a modified version of OpenComputers, has applied the necessary patch in version 1.10.10-GTNH.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.