CVE-2024-8067

Summary

In versions of Helix Core prior to 2024.1 Patch 2 (2024.1/2655224) a Windows ANSI API Unicode "best fit" argument injection was identified.

Affected Software

VendorProductVersion RangeStatus
HelixHelix Core2024.1 <= 2024.1 Patch 2 (2024.1/2655224)affected

Weaknesses

  • CWE-176: CWE-176: Improper Handling of Unicode Encoding

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References