CVE-2024-21526

Summary

All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro. Exploiting this vulnerability can lead to a process crash.

Affected Software

VendorProductVersion RangeStatus
n/aspeaker0 < *affected

Weaknesses

  • CWE-400: Denial of Service (DoS)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

CVE Program Container

Additional References

References