How severe is CVE-2024-31036?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2024-31036?

This is classified as CWE-122, which is a common weakness in software security.

CVE-2024-31036

MEDIUM Year: 2024

CVSS v3 Score

6.8

Medium

Weakness Type

CWE-122

View all →

Vulnerability Description

A heap-buffer-overflow vulnerability in the read_byte function in NanoMQ v.0.21.7 allows attackers to cause a denial of service via transmission of crafted hexstreams.

CVE-2021-31986

MEDIUM

CVSS:6.8(Medium)

User controlled parameters related to SMTP notifications are not correctly validated. This can lead to a buffer overflow resulting in crashes and data leakage.

CWE-1222021

The RNDIS USB device class includes a buffer overflow vulnerability. Zephyr versions >= v2.6.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-...

CWE-1222021