CVE-2024-31165

Summary

Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of13::SetFieldAction::unpack.

This issue affects libfluid: 0.1.0.

Affected Software

VendorProductVersion RangeStatus
Open Networking Foundation (ONF)libfluid0.1.0affected

Weaknesses

  • CWE-690: CWE-690 Unchecked Return Value to NULL Pointer Dereference

Workarounds

Until a software patch which fixes this issue is not released, it is highly recommended to not exposed the vulnerable component inside an untrusted network.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References