Unrated severityNVD Advisory· Published Nov 7, 2024· Updated Nov 8, 2024
emqx neuron plugin_handle.c handle_add_plugin buffer overflow
CVE-2024-10964
Description
A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. Affected is the function handle_add_plugin in the library cmd.library of the file plugins/restful/plugin_handle.c. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.10.0
- emqx/neuronv5Range: 2.0
Patches
Vulnerability mechanics
References
6- github.com/emqx/neuron/pull/2286/commits/3e3a583d72548af1740b3e61a5eab3b628cc439emitreissue-trackingpatch
- vuldb.commitrethird-party-advisory
- github.com/emqx/neuron/issues/2280mitreissue-tracking
- github.com/emqx/neuron/pull/2286mitreissue-tracking
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.