Vulnerability Description
Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fixes the issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Commons Configuration | >= 2.0, < 2.10.1 |
| Fedoraproject | Fedora | 39 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2024/03/20/3Mailing ListThird Party Advisory
- https://lists.apache.org/thread/ccb9w15bscznh6tnp3wsvrrj9crbszh2Mailing ListVendor Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- http://www.openwall.com/lists/oss-security/2024/03/20/3Mailing ListThird Party Advisory
- https://lists.apache.org/thread/ccb9w15bscznh6tnp3wsvrrj9crbszh2Mailing ListVendor Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
- https://lists.fedoraproject.org/archives/list/[email protected]Third Party Advisory
FAQ
What is CVE-2024-29133?
CVE-2024-29133 is a vulnerability with a CVSS score of 5.4 (MEDIUM). Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fi...
How severe is CVE-2024-29133?
CVE-2024-29133 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-29133?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Commons Configuration, Fedoraproject Fedora.