Unrated severityNVD Advisory· Published Jan 9, 2024· Updated Jun 16, 2025
Azure IoT Platform Device SDK Remote Code Execution Vulnerability
CVE-2024-21646
Description
Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binary type data, an integer overflow or wraparound or memory safety issue can occur and may cause remote code execution. This vulnerability has been patched in release 2024-01-01.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords5 versionspkg:rpm/opensuse/python-uamqp&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/python-uamqp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2pkg:rpm/suse/python-uamqp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3pkg:rpm/suse/python-uamqp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4pkg:rpm/suse/python-uamqp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5
< 1.5.3-150100.4.10.1+ 4 more
- (no CPE)range: < 1.5.3-150100.4.10.1
- (no CPE)range: < 1.5.3-150100.4.10.1
- (no CPE)range: < 1.5.3-150100.4.10.1
- (no CPE)range: < 1.5.3-150100.4.10.1
- (no CPE)range: < 1.5.3-150100.4.10.1
- Azure/azure-uamqp-cv5Range: < 2024-01-01
Patches
Vulnerability mechanics
References
2- github.com/Azure/azure-uamqp-c/commit/12ddb3a31a5a97f55b06fa5d74c59a1d84ad78femitrex_refsource_MISC
- github.com/Azure/azure-uamqp-c/security/advisories/GHSA-j29m-p99g-7hpvmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.