VYPR
High severity7.8NVD Advisory· Published Feb 8, 2024· Updated Jun 17, 2026

CVE-2024-1149

CVE-2024-1149

Description

Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on MacOS, Snow Software Inventory Agent on Windows, Snow Software Inventory Agent on Linux allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 6.12.0; Inventory Agent: through 6.14.5; Inventory Agent: through 6.7.2.

Affected products

2
  • Snow Software/Inventory Agentllm-fuzzy2 versions
    through 6.12.0, through 6.14.5, through 6.7.2+ 1 more
    • (no CPE)range: through 6.12.0, through 6.14.5, through 6.7.2
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.