CVE-2024-37535

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-37535
GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via a window resize escape sequence, a related issue to CVE-2000-0476.

4.4 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
http://www.openwall.com/lists/oss-security/2024/06/09/1
http://www.openwall.com/lists/oss-security/2024/06/09/2
https://gitlab.gnome.org/GNOME/vte/-/issues/2786
https://gitlab.gnome.org/GNOME/vte/-/tags/0.76.3
Configurations

No configuration.

History

No history.

Information

Published : 2024-06-09 15:16

Updated : 2024-07-03 02:04

NVD link : CVE-2024-37535

Mitre link : CVE-2024-37535

CVE.ORG link : CVE-2024-37535

JSON object : View

Products Affected

No product.

CWE
CWE-400

Uncontrolled Resource Consumption