CVE-2024-31187

Summary

Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of13::MultipartReplyPortDescription::unpack.

This issue affects libfluid: 0.1.0.

Affected Software

VendorProductVersion RangeStatus
Open Networking Foundation (ONF)libfluid0.1.0affected

Weaknesses

  • CWE-125: CWE-125 Out-of-bounds Read

Workarounds

Until a software patch which fixes this issue is not released, it is highly recommended to not exposed the vulnerable component inside an untrusted network.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References