CVE-2024-0316

Summary

Improper cleanup vulnerability in exceptions thrown in FireEye Endpoint Security, affecting version 5.2.0.958244. This vulnerability could allow an attacker to send multiple request packets to the containment_notify/preview parameter, which could lead to a service outage.

Affected Software

VendorProductVersion RangeStatus
FireEyeFireEye Endpoint Security5.2.0.958244affected

Weaknesses

  • CWE-460: CWE-460: Improper Cleanup on Thrown Exception

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References