CVE-2024-35213

An improper input validation vulnerability in the SGI Image Codec of QNX SDP version(s) 6.6, 7.0, and 7.1 could allow an attacker to potentially cause a denial-of-service condition or execute code in the context of the image processing process.

CVSS v3 9.0 CRITICAL

9.0^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://support.blackberry.com/pkb/s/article/139914
https://support.blackberry.com/pkb/s/article/139914

Configurations

No configuration.

History

21 Nov 2024, 09:19

Type	Values Removed	Values Added
References	~~() https://support.blackberry.com/pkb/s/article/139914 -~~	() https://support.blackberry.com/pkb/s/article/139914 -

13 Jun 2024, 18:36

Type	Values Removed	Values Added
Summary		(es) Una vulnerabilidad de validación de entrada incorrecta en el códec de imágenes SGI de las versiones 6.6, 7.0 y 7.1 de QNX SDP podría permitir que un atacante cause potencialmente una condición de denegación de servicio o ejecute código en el contexto del proceso de procesamiento de imágenes.

11 Jun 2024, 19:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-11 19:16

Updated : 2024-11-21 09:19

NVD link : CVE-2024-35213

Mitre link : CVE-2024-35213

CVE.ORG link : CVE-2024-35213

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

9.0 /10