VDB
CVE-2024-36600
CVE-2024-36600
PUBLISHED
CVSS 8.399999618530273 HIGH
Buffer Overflow Vulnerability in libcdio 2.2.0 (fixed in 2.3.0) allows an attacker to execute arbitrary code via a crafted ISO 9660 image file.
EPSS 0.08% · 24.1th percentile
Risk Scores
CVSS v3.1
8.399999618530273
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.08%
24.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| gnu | libcdio | 2.1.0 |
| n/a | n/a | n/a |
| gnu | libcdio | 2.2.0 |
Timeline
- Jun 14, 2024 CVE Published
- Jun 15, 2024 EPSS Score
- Jul 8, 2024 EPSS Score
- Jul 31, 2024 EPSS Score
- Aug 22, 2024 EPSS Score
- Sep 14, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 7, 2024 EPSS Score
- Oct 30, 2024 EPSS Score
- Nov 22, 2024 EPSS Score
- Dec 16, 2024 EPSS Score
- Jan 7, 2025 EPSS Score