CVE-2024-38856 – Apache OFBiz Zero-Day Vulnerability
August 7, 2024Android Users Targeted by Chameleon Banking Trojan Using Fake CRM App
August 7, 2024CVE-2024-38856 – Apache OFBiz Zero-Day Vulnerability
August 7, 2024Android Users Targeted by Chameleon Banking Trojan Using Fake CRM App
August 7, 2024Severity
High
Analysis Summary
CVE-2024-7502
Delta Electronics DIAScreen is vulnerable to a stack-based buffer overflow. By persuading a victim to open a specially crafted DPA file, a remote attacker could exploit this vulnerability to overflow a buffer and execute arbitrary code on the system.
Impact
- Buffer Overflow
Indicators of Compromise
CVE
- CVE-2024-7502
Affected Vendors
Affected Products
- Delta Electronics DIAScreen - 140
Remediation
Upgrade to the latest version of DIAScreen, available from the Delta Electronics Website.