nvd-json-data-feeds/CVE-2024/CVE-2024-228xx/CVE-2024-22857.json

{
  "id": "CVE-2024-22857",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-03-07T01:15:52.640",
  "lastModified": "2024-04-19T01:15:06.297",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlog_rule_new().The size of record_name is MAXLEN_PATH(1024) + 1 but file_path may have data upto MAXLEN_CFG_LINE(MAXLEN_PATH*4) + 1. So a check was missing in zlog_rule_new() while copying the record_name from file_path + 1 which caused the buffer overflow. An attacker can exploit this vulnerability to overwrite the zlog_record_fn record_func function pointer to get arbitrary code execution or potentially cause remote code execution (RCE)."
    },
    {
      "lang": "es",
      "value": "zlog 1.2.16 tiene un desbordamiento de b\u00fafer de almacenamiento din\u00e1mico en la estructura zlog_rule_s mientras crea una nueva regla que ya est\u00e1 definida en el archivo de configuraci\u00f3n proporcionado. Un usuario normal puede lograr la ejecuci\u00f3n de c\u00f3digo arbitrario."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/HardySimpson/zlog/",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://github.com/HardySimpson/zlog/blob/1a7b1a6fb956b92a4079ccc91f30da21f34ca063/src/rule.h#L30",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://github.com/HardySimpson/zlog/pull/251",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://www.cybersecurity-help.cz/vdb/SB2024022842",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://www.ebryx.com/blogs/arbitrary-code-execution-in-zlog-cve-2024-22857",
      "source": "cve@mitre.org"
    }
  ]
}