A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as critical. Affected by this vulnerability is the function main of the component View All Student Marks. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Razormist
Razormist student Record Management System
Weaknesses CWE-787
CPEs cpe:2.3:a:razormist:student_record_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Razormist
Razormist student Record Management System

Tue, 19 Nov 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Sourcecodester
Sourcecodester student Record Management System
CPEs cpe:2.3:a:sourcecodester:student_record_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Sourcecodester
Sourcecodester student Record Management System
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 15 Nov 2024 22:45:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as critical. Affected by this vulnerability is the function main of the component View All Student Marks. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.
Title SourceCodester Student Record Management System View All Student Marks main stack-based overflow
Weaknesses CWE-119
CWE-121
References
Metrics cvssV2_0

{'score': 4.3, 'vector': 'AV:L/AC:L/Au:S/C:P/I:P/A:P'}

cvssV3_0

{'score': 5.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L'}

cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-11-15T22:31:04.443Z

Updated: 2024-11-19T16:25:32.708Z

Reserved: 2024-11-15T14:28:51.901Z

Link: CVE-2024-11262

cve-icon Vulnrichment

Updated: 2024-11-19T16:25:27.218Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-15T23:15:10.270

Modified: 2024-11-21T20:52:29.160

Link: CVE-2024-11262

cve-icon Redhat

No data.