Vulnerability Details CVE-2024-26256
Libarchive Remote Code Execution Vulnerability
Exploit prediction scoring system (EPSS) score
EPSS Score 0.701
EPSS Ranking 98.6%
CVSS Severity
CVSS v3 Score 7.8
References
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26256
- http://www.openwall.com/lists/oss-security/2024/06/04/2
- http://www.openwall.com/lists/oss-security/2024/06/05/1
- https://github.com/LeSuisse/nixpkgs/commit/81b82a2934521dffef76f7ca305d8d4e22fe7262
- https://github.com/libarchive/libarchive/commit/eb7939b24a681a04648a59cdebd386b1e9dc9237.patch
- https://github.com/libarchive/libarchive/releases/tag/v3.7.4
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EWANFZ6NEMXFCALXWI2AFKYBOLONAVFC/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TWAMR5TY47UKVYMWQXB34CWSBNTRYMBV/
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26256
- https://www.openwall.com/lists/oss-security/2024/06/04/2
Products affected by CVE-2024-26256
-
cpe:2.3:a:libarchive:libarchive:-
-
cpe:2.3:a:libarchive:libarchive:2.6.0
-
cpe:2.3:a:libarchive:libarchive:2.6.1
-
cpe:2.3:a:libarchive:libarchive:2.6.2
-
cpe:2.3:a:libarchive:libarchive:2.7.0
-
cpe:2.3:a:libarchive:libarchive:2.7.1
-
cpe:2.3:a:libarchive:libarchive:2.8.0
-
cpe:2.3:a:libarchive:libarchive:2.8.1
-
cpe:2.3:a:libarchive:libarchive:2.8.2
-
cpe:2.3:a:libarchive:libarchive:2.8.3
-
cpe:2.3:a:libarchive:libarchive:2.8.4
-
cpe:2.3:a:libarchive:libarchive:2.8.5
-
cpe:2.3:a:libarchive:libarchive:3.0.0a
-
cpe:2.3:a:libarchive:libarchive:3.0.1b
-
cpe:2.3:a:libarchive:libarchive:3.0.2
-
cpe:2.3:a:libarchive:libarchive:3.0.3
-
cpe:2.3:a:libarchive:libarchive:3.0.4
-
cpe:2.3:a:libarchive:libarchive:3.1.0
-
cpe:2.3:a:libarchive:libarchive:3.1.1
-
cpe:2.3:a:libarchive:libarchive:3.1.2
-
cpe:2.3:a:libarchive:libarchive:3.1.900a
-
cpe:2.3:a:libarchive:libarchive:3.1.901a
-
cpe:2.3:a:libarchive:libarchive:3.2.0
-
cpe:2.3:a:libarchive:libarchive:3.2.1
-
cpe:2.3:a:libarchive:libarchive:3.2.2
-
cpe:2.3:a:libarchive:libarchive:3.3.0
-
cpe:2.3:a:libarchive:libarchive:3.3.1
-
cpe:2.3:a:libarchive:libarchive:3.3.2
-
cpe:2.3:a:libarchive:libarchive:3.3.3
-
cpe:2.3:a:libarchive:libarchive:3.4.0
-
cpe:2.3:a:libarchive:libarchive:3.4.1
-
cpe:2.3:a:libarchive:libarchive:3.4.2
-
cpe:2.3:a:libarchive:libarchive:3.4.3
-
cpe:2.3:a:libarchive:libarchive:3.5.0
-
cpe:2.3:a:libarchive:libarchive:3.5.1
-
cpe:2.3:a:libarchive:libarchive:3.5.2
-
cpe:2.3:a:libarchive:libarchive:3.5.3
-
cpe:2.3:a:libarchive:libarchive:3.6.0
-
cpe:2.3:a:libarchive:libarchive:3.6.1
-
cpe:2.3:a:libarchive:libarchive:3.6.2
-
cpe:2.3:a:libarchive:libarchive:3.7.0
-
cpe:2.3:a:libarchive:libarchive:3.7.1
-
cpe:2.3:a:libarchive:libarchive:3.7.2
-
cpe:2.3:a:libarchive:libarchive:3.7.3
-
cpe:2.3:o:fedoraproject:fedora:39
-
cpe:2.3:o:fedoraproject:fedora:40
-
cpe:2.3:o:microsoft:windows_11_22h2:-
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22000.1413
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22000.1702
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1105
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1194
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1265
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1344
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1413
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1485
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1555
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1635
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1702
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1778
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1848
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1928
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.1992
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2070
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2134
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2215
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2275
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2283
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2361
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2428
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2715
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.2861
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.3007
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.3085
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.3155
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.3235
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.3296
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.3374
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.521
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.525
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.608
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.674
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.675
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.755
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.819
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.900
-
cpe:2.3:o:microsoft:windows_11_22h2:10.0.22621.963
-
cpe:2.3:o:microsoft:windows_11_23h2:-
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22621.4751
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2428
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2506
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2715
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2792
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2861
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3007
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3085
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3155
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3235
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3296
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3374
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:-
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.521
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.531
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.584
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.643
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.709
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.763