CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-7547

Critical Severity
Ofono_project
SVRS
70/100
CVSSv3
7.8/10
EPSS
0.00042/1

CVE-2024-7547 is a critical stack-based buffer overflow vulnerability in oFono, a modem management software. This flaw allows local attackers with code execution capabilities on the modem to potentially escalate privileges and execute arbitrary code.

Specifically, CVE-2024-7547 arises from insufficient validation of user-supplied data length during SMS PDU parsing, leading to a buffer overflow. While the CVSS score is 7.8, indicating high severity, the SOCRadar Vulnerability Risk Score (SVRS) of 70 suggests a notable level of risk and warrants careful review, but is not considered a critical vulnerability based on the SVRS threshold of 80. Exploiting this vulnerability could grant attackers control within the service account context, allowing for malicious activities. Mitigating this vulnerability is crucial to prevent unauthorized access and maintain system integrity. Though not critical, system administrators should prioritize patching this flaw due to potential for privilege escalation and arbitrary code execution. Timely updates and robust input validation are vital to defend against similar attacks.

TAGS
No tags available
VECTOR STRING
CVSS:3.1
AV:L
AC:L
PR:L
UI:N
S:U
C:H
I:H
A:H
PUBLICATION DATE2024-08-06
LAST MODIFIED2024-08-19
Eye Icon
SOCRadar
AI Insight

Description

CVE-2024-7547 is a stack-based buffer overflow vulnerability in oFono SMS Decoder that allows local attackers to execute arbitrary code on affected installations. The vulnerability arises from insufficient validation of user-supplied data length before copying it to a stack buffer. Exploiting this vulnerability requires prior code execution on the target modem.

Key Insights

  • SVRS Score: 0 (Low)
  • Exploit Status: No active exploits published
  • CISA Warnings: No warnings issued
  • In the Wild: Not actively exploited

Mitigation Strategies

  • Update oFono to the latest version
  • Restrict access to the target modem
  • Implement input validation mechanisms to prevent buffer overflows
  • Monitor for suspicious activity and take appropriate action

Additional Information

If you have any further questions, you can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

No news found for this CVE

Social Media

[ZDI-24-1087|CVE-2024-7547] (0Day) oFono SMS Decoder Stack-based Buffer Overflow Privilege Escalation Vulnerability (CVSS 7.0; Credit: Lucas Leong (@_wmliang_) of Trend Micro Zero Day Initiative) https://t.co/sry6cFgwch
0
0
0

Affected Software

Configuration 1
TypeVendorProduct
AppOfono_projectofono

References

ReferenceLink
[email protected]https://www.zerodayinitiative.com/advisories/ZDI-24-1087/

CWE Details

CWE IDCWE NameDescription
CWE-121Stack-based Buffer OverflowA stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-787Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence