CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-10838

An integer underflow during deserialization may allow any unauthenticated user to read out of bounds heap memory. This may result into secret data or pointers revealing the layout of the address space to be included into a deserialized data structure, which may potentially lead to thread crashes or cause denial of service conditions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.1%

CVSS Severity

CVSS v3 Score 9.1

References

Products affected by CVE-2024-10838

Eclipse » Cyclone Data Distribution Service » Version: 0.1.0

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.1.0
Eclipse » Cyclone Data Distribution Service » Version: 0.10.1

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.10.1
Eclipse » Cyclone Data Distribution Service » Version: 0.10.2

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.10.2
Eclipse » Cyclone Data Distribution Service » Version: 0.5.0

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.5.0
Eclipse » Cyclone Data Distribution Service » Version: 0.5.1

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.5.1
Eclipse » Cyclone Data Distribution Service » Version: 0.6.0

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.6.0
Eclipse » Cyclone Data Distribution Service » Version: 0.7.0

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.7.0
Eclipse » Cyclone Data Distribution Service » Version: 0.8.0

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.8.0
Eclipse » Cyclone Data Distribution Service » Version: 0.8.1

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.8.1
Eclipse » Cyclone Data Distribution Service » Version: 0.8.2

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.8.2
Eclipse » Cyclone Data Distribution Service » Version: 0.9.0

cpe:2.3:a:eclipse:cyclone_data_distribution_service:0.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-10838

Products

Pricing

Contact Us