CVE-2024-20696

Description

Windows libarchive Remote Code Execution Vulnerability

PUBLISHED Reserved 2023-11-28 | Published 2024-01-09 | Updated 2025-11-03 | Assigner microsoft

Problem types

CWE-122: Heap-based Buffer Overflow

Product status

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20696 (Windows Libarchive Remote Code Execution Vulnerability) vendor-advisory

clearbluejar.github.io/...2024-20696-windows-libarchive-rce/

github.com/clearbluejar/CVE-2024-20696

lists.debian.org/debian-lts-announce/2024/11/msg00007.html

msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20696 (Windows libarchive Remote Code Execution Vulnerability) vendor-advisory

cve.org (CVE-2024-20696)

nvd.nist.gov (CVE-2024-20696)

Download JSON