CVE-2024-57261

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Feb 19, 2025

CWE ID 190

Summary

CVE-2024-57261 is a newly disclosed vulnerability affecting barebox before version 2025.01.0. This issue involves an integer overflow in the request2size function located within common/dlmalloc.c. This vulnerability is related to CVE-2024-57258, and if exploited, could lead to memory corruption and potential code execution. The impact of this vulnerability is significant, as it could potentially enable attackers to gain unauthorized access to systems running the affected version of barebox. It is strongly recommended that users update to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2T5ifm
https://www.cve.org/CVERecord?id=CVE-2024-57261
https://nvd.nist.gov/vuln/detail/CVE-2024-57261

Back to Vulnerability Database

CVE-2024-57261

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations