CVE-2024-51979
BaseFortify
Publication date: 2025-06-25
Last updated on: 2025-06-26
Assigner: Rapid7, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a stack-based buffer overflow that can be triggered by an authenticated attacker sending a malformed request to HTTP, HTTPS, or IPP services. The attack involves sending a request with an empty Origin header and a Referer header containing a host value longer than 64 bytes, which causes the buffer overflow when processed.
How can this vulnerability impact me? :
The vulnerability can lead to a high impact including confidentiality, integrity, and availability being compromised. Because it is a stack-based buffer overflow, it may allow an attacker to execute arbitrary code, cause a denial of service, or gain elevated privileges on the affected system.