CVE-2024-54170

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 27, 2025

CWE ID 1333

Summary

CVE-2024-54170 is a vulnerability affecting IBM EntireX 11.1. This issue permits a local user to instigate a denial of service condition by employing a complex regular expression. The inefficient processing of the regulation expression results in excessive CPU usage, leading to a potential service outage. IBM EntireX users are advised to apply the necessary patches to mitigate this risk. This flaw can be exploited to disrupt the normal functioning of the system, causing inconvenience or potential downtime.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1F81bq
https://www.cve.org/CVERecord?id=CVE-2024-54170
https://nvd.nist.gov/vuln/detail/CVE-2024-54170

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-54170

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations