CVE-2024-42329

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Nov 27, 2024
CWE ID 476
CWE ID 690

Summary

CVE-2024-42329 is a vulnerability affecting the webdriver for the Browser object. This issue arises when the webdriver_session_query function fails without initializing an error object. Consequently, the wd->error variable become NULL, leading to a crash when an attempt is made to read from it. The function can fail for multiple reasons and may not always provide an error description, making this a potential point of instability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share