How severe is CVE-2024-57970?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4 out of 10.

What type of vulnerability is CVE-2024-57970?

This is classified as CWE-126, which is a common weakness in software security.

CVE-2024-57970

MEDIUM Year: 2024

CVSS v3 Score

4.0

Medium

Weakness Type

CWE-126

View all →

Vulnerability Description

libarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in archive_read_support_format_tar.c via a TAR archive because it mishandles truncation in the middle of a GNU long linkname.

CVE-2022-42768

MEDIUM

CVSS:4.3(Medium)

In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.

CWE-1262022

CVE-2025-47295

LOW

CVSS:3.7(Low)

A buffer over-read in Fortinet FortiOS versions 7.4.0 through 7.4.3, versions 7.2.0 through 7.2.7, and versions 7.0.0 through 7.0.14 may allow a remote unauthenticated attacker to crash the FGFM daemo...

CWE-1262025

CVE-2022-1907

LOW

CVSS:3.6(Low)

Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.

CWE-1262022

CVE-2022-1908

LOW

CVSS:3.6(Low)

Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.

CWE-1262022

CVE-2021-22563

MEDIUM

CVSS:4.4(Medium)

Invalid JPEG XL images using libjxl can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. The OOB read access can either lead to a segfault, or rendering splines b...

CWE-1262021

CVE-2022-4432

MEDIUM

CVSS:4.4(Medium)

A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure.

CWE-1262022

CVE-2024-57970

Vulnerability Description

Related Vulnerabilities

CVE-2022-42768

CVE-2025-47295

CVE-2022-1907

CVE-2022-1908

CVE-2021-22563

CVE-2022-4432