CVE-2024-6381

MEDIUM Year: 2024
CVSS v3 Score
4.0
Medium
Weakness Type
CWE-680
View all →

Vulnerability Description

The bson_strfreev function in the MongoDB C driver library may be susceptible to an integer overflow where the function will try to free memory at a negative offset. This may result in memory corruption. This issue affected libbson versions prior to 1.26.2

Related Vulnerabilities

CVE-2020-15103

LOW
CVSS:3.5(Low)

In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All FreeRDP clients are affected. The input rectangles from the server are not ch...

CWE-6802020

CVE-2020-11038

MEDIUM
CVSS:5.4(Medium)

In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller s...

CWE-6802020

CVE-2022-29030

MEDIUM
CVSS:5.5(Medium)

A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization V13.3 (All versions < V13.3.0.3), Teamcenter Visualization V14.0 (All versions < V14.0.0.1). The Mono_...

CWE-6802022

CVE-2023-22305

MEDIUM
CVSS:5.5(Medium)

Integer overflow in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable denial of service via local access.

CWE-6802023

CVE-2023-22443

MEDIUM
CVSS:5.5(Medium)

Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable denial of service via local access.

CWE-6802023

CVE-2024-55626

MEDIUM
CVSS:5.5(Medium)

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large BPF filter file provided to Suricata at startup can lead t...

CWE-6802024