CVE-2024-33599
Published: 06 May 2024
Summary
CVE-2024-33599 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Gnu Glibc. Its CVSS base score is 8.1 (High).
Operationally, ranked in the top 18.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-31336
Vulnerability details
nscd: Stack-based buffer overflow in netgroup cache If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted by client requests then a subsequent client request for netgroup data may result in a stack-based buffer overflow. This flaw was…
more
introduced in glibc 2.15 when the cache was added to nscd. This vulnerability is only present in the nscd binary.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.