Vulnerability Details CVE-2024-43700
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.4%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2024-43700
-
cpe:2.3:a:philiphazel:xfpt:-
-
cpe:2.3:a:philiphazel:xfpt:1.00