CVE-2024-13524
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2024-13524, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-01-20

Last updated on: 2025-01-20

Assigner: VulDB

Description

A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of an attack is rather high. The exploitation appears to be difficult. It is recommended to apply a patch to fix this issue. The vendor disagrees that this issue is "something worth reporting, as every attack surface requires privileged access/user compromise".

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-01-20
Last Modified
2025-01-20
Generated
2026-07-06
AI Q&A
2025-01-20
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-426 The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability, identified as CVE-2024-13524, is found in the OBS Studio software developed by obsproject, specifically in versions up to 30.0.2 on Windows. It is related to an untrusted search path issue, which means that the software could be tricked into loading harmful files instead of the correct ones. This could allow an attacker to run malicious code on your system.

Impact Analysis

If you use OBS Studio on Windows and have version 30.0.2 or earlier, this vulnerability could potentially allow an attacker to execute harmful code on your computer. This could lead to unauthorized access to your files or other serious security issues.

Mitigation Strategies

It is recommended to apply a patch to fix this issue.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2024-13524. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart