Vulnerability Description
Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fixes the issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Commons Configuration | >= 2.0, < 2.10.1 |
| Fedoraproject | Fedora | 39 |
| Netapp | Ontap Tools | 10 |
| Netapp | Snapcenter | - |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2024/03/20/4Mailing ListThird Party Advisory
- https://lists.apache.org/thread/03nzzzjn4oknyw5y0871tw7ltj0t3r37Mailing ListVendor Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- http://www.openwall.com/lists/oss-security/2024/03/20/4Mailing ListThird Party Advisory
- https://lists.apache.org/thread/03nzzzjn4oknyw5y0871tw7ltj0t3r37Mailing ListVendor Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- https://security.netapp.com/advisory/ntap-20241213-0001/Third Party Advisory
FAQ
What is CVE-2024-29131?
CVE-2024-29131 is a vulnerability with a CVSS score of 7.3 (HIGH). Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fi...
How severe is CVE-2024-29131?
CVE-2024-29131 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-29131?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Commons Configuration, Fedoraproject Fedora, Netapp Ontap Tools, Netapp Snapcenter.