CVE-2024-49554

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 10, 2024
Updated: Dec 18, 2024
CWE ID 476

Summary

CVE-2024-49554 is a NULL Pointer Dereference vulnerability affecting Media Encoder versions 25.0 and 24.6.3 and older. This issue could cause an application denial-of-service when an attacker tricks a user into opening a malicious file. The vulnerability occurs due to the application's failure to properly check pointers, resulting in a NULL pointer dereference and application crash. This condition prevents the targeted Media Encoder application from functioning, leading to a denial of service.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share