CVE-2024-13524
BaseFortify
Publication date: 2025-01-20
Last updated on: 2025-01-20
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-426 | The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability, identified as CVE-2024-13524, is found in the OBS Studio software developed by obsproject, specifically in versions up to 30.0.2 on Windows. It is related to an untrusted search path issue, which means that the software could be tricked into loading harmful files instead of the correct ones. This could allow an attacker to run malicious code on your system.
How can this vulnerability impact me?
If you use OBS Studio on Windows and have version 30.0.2 or earlier, this vulnerability could potentially allow an attacker to execute harmful code on your computer. This could lead to unauthorized access to your files or other serious security issues.
What immediate steps should I take to mitigate this vulnerability?
It is recommended to apply a patch to fix this issue.