CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-11097

High Severity
Razormist
SVRS
54/100
CVSSv3
5.5/10
EPSS
0.00015/1

CVE-2024-11097 in SourceCodester Student Record Management System 1.0 allows for a potential denial-of-service due to an infinite loop. This vulnerability affects the Main Menu component, requiring local access to exploit. While the CVSS score is 5.5, the SVRS score of 54 indicates a moderate risk, suggesting the exploit is available and potentially in use. The presence of this vulnerability means a local attacker could crash the system, disrupting student record management. Although not immediately critical, the public availability of the exploit warrants monitoring and patching as soon as feasible. The CWE-835 designation further specifies the potential for control flow issues that can lead to system instability. Resolving this infinite loop vulnerability is crucial for maintaining system uptime and preventing local denial-of-service attacks.

TAGS
In The Wild
VECTOR STRING
CVSS:3.1
AV:L
AC:L
PR:L
UI:N
S:U
C:N
I:N
A:H
PUBLICATION DATE2024-11-12
LAST MODIFIED2024-11-14

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-11097 | SourceCodester Student Record Management System 1.0 Main Menu infinite loop
vuldb.com2024-11-11
CVE-2024-11097 | SourceCodester Student Record Management System 1.0 Main Menu infinite loop | A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. This vulnerability was named CVE-2024-11097. Attacking locally is a requirement. Furthermore, there is an exploit available.
vuldb.com
rss
forum
news

Social Media

🚨 CVE-2024-11097 (Published: 2024-11-12) - A high-severity vulnerability has been identified in SourceCodester. Affected versions include all prior to the latest update. 🛠️ Remediation is crucial! Ensure you update to the latest version to protect your systems. More info:
0
0
0

Affected Software

Configuration 1
TypeVendorProduct
AppRazormiststudent_record_management_system

References

ReferenceLink
[email protected]https://github.com/Hacker0xone/CVE/issues/5
[email protected]https://vuldb.com/?ctiid.283918
[email protected]https://vuldb.com/?id.283918
[email protected]https://vuldb.com/?submit.441237
[email protected]https://www.sourcecodester.com/

CWE Details

CWE IDCWE NameDescription
CWE-835Loop with Unreachable Exit Condition ('Infinite Loop')The program contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
CWE-404Improper Resource Shutdown or ReleaseThe program does not release or incorrectly releases a resource before it is made available for re-use.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence