CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-7490

Improper Input Validation vulnerability in Microchip Techology Advanced Software Framework example DHCP server can cause remote code execution through a buffer overflow. This vulnerability is associated with program files tinydhcpserver.C and program routines lwip_dhcp_find_option. This issue affects Advanced Software Framework: through 3.52.0.2574. ASF is no longer being supported. Apply provided workaround or migrate to an actively maintained framework.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.microchip.com/en-us/tools-resources/develop/libraries/advanced-software-framework
https://www.kb.cert.org/vuls/id/138043

Products affected by CVE-2024-7490

Microchip » Advanced Software Framework » Version: Any

cpe:2.3:a:microchip:advanced_software_framework:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7490

Products

Pricing

Contact Us