CVE-2024-52059 — Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Heap-bas...

Medium CVSS 6.9

Overview

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional (Security Plugins) allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from 6.1.0 before 6.1.2.17.

CWE: CWE-120 Published: 2024-12-13T11:15:08.080

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 6.9 (MEDIUM)
Detected tags: buffer, int_overflow (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags