CVE-2024-10559 | THREATINT

Description

A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified as critical. Affected by this issue is the function Details. The manipulation of the argument passport/name leads to buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Eine Schwachstelle wurde in SourceCodester Airport Booking Management System 1.0 gefunden. Sie wurde als kritisch eingestuft. Davon betroffen ist die Funktion Details. Durch die Manipulation des Arguments passport/name mit unbekannten Daten kann eine buffer overflow-Schwachstelle ausgenutzt werden. Der Angriff muss lokal passieren. Der Exploit steht zur öffentlichen Verfügung.

Reserved 2024-10-30 | Published 2024-10-31 | Updated 2025-04-03 | Assigner VulDB

MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

MEDIUM: 5.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

MEDIUM: 5.3CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

4.3AV:L/AC:L/Au:S/C:P/I:P/A:P

Problem types

Buffer Overflow

Memory Corruption

Product status

1.0

affected

Timeline

2024-10-30:	Advisory disclosed
2024-10-30:	VulDB entry created
2025-04-03:	VulDB entry last update

Credits

YANG HUA (VulDB User) reporter

References

vuldb.com/?id.282560 (VDB-282560 | SourceCodester Airport Booking Management System details buffer overflow) vdb-entry technical-description

vuldb.com/?ctiid.282560 (VDB-282560 | CTI Indicators (IOB, IOC, IOA)) signature permissions-required

vuldb.com/?submit.433262 (Submit #433262 | SourceCodester Airport Booking Management System in C with Source Code 1.0 Buffer Overflow) third-party-advisory

github.com/CveSecLook/cve/issues/64 exploit issue-tracking

www.sourcecodester.com/ product

cve.org (CVE-2024-10559)

nvd.nist.gov (CVE-2024-10559)

Download JSON