Cyber Resilience

CVE-2024-41147

HighPublic PoC

Published: 04 March 2025

Published
04 March 2025
Modified
26 August 2025
KEV Added
Patch
CVSS Score v3.1 7.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H
EPSS Score 0.0037 59.5th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-41147 is a high-severity Heap-based Buffer Overflow (CWE-122) vulnerability in Mackron Miniaudio. Its CVSS base score is 7.7 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 40.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-16 (Memory Protection) and SI-2 (Flaw Remediation).

Deeper analysis

An out-of-bounds write vulnerability, tracked as CVE-2024-41147 and published on 2025-03-04, affects the ma_dr_flac__decode_samples__lpc functionality in Miniaudio version 0.11.21. This flaw, associated with CWE-122, can be triggered by a specially crafted FLAC file, resulting in memory corruption. The vulnerability carries a CVSS v3.1 base score of 7.7 (AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H), indicating high severity due to potential impacts on integrity and availability.

A remote attacker with no privileges or user interaction required can exploit this vulnerability over the network, though it demands high attack complexity. By providing a malicious FLAC file to an application using the affected Miniaudio component for decoding, the attacker can induce memory corruption, potentially leading to arbitrary code execution, data tampering, or denial of service.

The primary advisory from Talos Intelligence, available at https://talosintelligence.com/vulnerability_reports/TALOS-2024-2063, documents the vulnerability in detail. Security practitioners should consult this report for technical analysis, reproduction steps, and recommended mitigations, such as updating to a patched version of Miniaudio if available.

EU & UK References

Vulnerability details

An out-of-bounds write vulnerability exists in the ma_dr_flac__decode_samples__lpc functionality of Miniaudio miniaudio v0.11.21. A specially crafted .flac file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

The out-of-bounds write in FLAC decoding enables remote exploitation via a malicious file leading to memory corruption and arbitrary code execution in applications processing such files over the network with no user interaction required.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-23827Shared CWE-122
CVE-2026-45584Shared CWE-122
CVE-2026-8175Shared CWE-122
CVE-2026-32945Shared CWE-122
CVE-2025-34522Shared CWE-122
CVE-2026-20766Shared CWE-122
CVE-2026-4395Shared CWE-122
CVE-2025-67268Shared CWE-122
CVE-2026-22697Shared CWE-122
CVE-2025-67896Shared CWE-122

Affected Assets

mackron
miniaudio
0.11.21

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires timely identification, reporting, and remediation of flaws, directly addressing CVE-2024-41147 by mandating patches for the vulnerable Miniaudio library.

prevent

Implements memory protection mechanisms like non-executable memory and address space randomization to prevent exploitation of the out-of-bounds write in Miniaudio's FLAC decoder.

prevent

Validates inputs such as specially crafted FLAC files before processing to ensure consistency with expected formats, reducing the risk of triggering the memory corruption vulnerability.

References