Vulnerability Description
openNDS 10.2.0 is vulnerable to Use-After-Free via /openNDS/src/auth.c.
CVSS Score
5.5
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opennds | Opennds | 10.2.0 |
Related Weaknesses (CWE)
References
- https://github.com/LuMingYinDetect/openNDS_defects/blob/main/openNDS_detect_1.mdExploitThird Party Advisory
- https://github.com/LuMingYinDetect/openNDS_defects/blob/main/openNDS_detect_1.mdExploitThird Party Advisory
FAQ
What is CVE-2024-25763?
CVE-2024-25763 is a vulnerability with a CVSS score of 5.5 (MEDIUM). openNDS 10.2.0 is vulnerable to Use-After-Free via /openNDS/src/auth.c.
How severe is CVE-2024-25763?
CVE-2024-25763 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-25763?
Check the references section above for vendor advisories and patch information. Affected products include: Opennds Opennds.