CVE-2024-39354

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 11, 2024

Updated: Nov 12, 2024

CWE ID 121

Summary

CVE-2024-39354 is a newly disclosed vulnerability that targets the CEtherIPTagItem component in Delta Electronics' DIAScreen software. Malicious users can exploit a stack-based buffer overflow in this component by convincing a legitimate user to run the software with a specially crafted file. Successful exploitation of this vulnerability allows the attacker to execute arbitrary code remotely. This poses a significant risk to systems running Delta Electronics' DIAScreen software and highlights the importance of keeping software up-to-date with the latest security patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xDX3-4
https://www.cve.org/CVERecord?id=CVE-2024-39354
https://nvd.nist.gov/vuln/detail/CVE-2024-39354

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-39354

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations