Vulnerability Details CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.4%
CVSS Severity
CVSS v3 Score 8.4
References
Products affected by CVE-2024-54028
-
cpe:2.3:a:fossies:catdoc:0.95
-
cpe:2.3:o:debian:debian_linux:11.0