CVE-2024-55456

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Feb 3, 2025

Updated: Feb 4, 2025

Summary

CVE-2024-55456 is a newly identified vulnerability affecting version 3.0.1 of the lunasvg library. This issue involves a segmentation violation in the gray_find_cell component, which could potentially allow an attacker to execute arbitrary code or cause a denial-of-service condition. Users of lunasvg are advised to upgrade to a patched version as soon as possible to mitigate this risk. The exact details of the exploit remain unknown, but it's recommended that system administrators take a proactive approach to securing their environments against this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1T00HH
https://www.cve.org/CVERecord?id=CVE-2024-55456
https://nvd.nist.gov/vuln/detail/CVE-2024-55456

Back to Vulnerability Database

CVE-2024-55456

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations