Vulnerability Description
In Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service (resource exhaustion).
CVSS Score
7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Related Weaknesses (CWE)
References
- https://github.com/project-chip/connectedhomeip/commit/e3277eb02ed8115de5887e8be
- https://github.com/project-chip/connectedhomeip/issues/36760
- https://github.com/project-chip/connectedhomeip/pull/36843
- https://github.com/project-chip/connectedhomeip/issues/36760
FAQ
What is CVE-2024-56319?
CVE-2024-56319 is a vulnerability with a CVSS score of 7.5 (HIGH). In Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0 before e3277eb, unlimited user label appends in a userlabel cluster can lead to a denial of service (resource exhaustion).
How severe is CVE-2024-56319?
CVE-2024-56319 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-56319?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.