CVE-2024-3207
- Source
- https://cve.org/CVERecord?id=CVE-2024-3207
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-3207.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-3207
- Published
- 2024-04-02T23:15:54.853Z
- Modified
- 2026-04-10T05:14:26.609386Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability was found in ermig1979 Simd up to 6.0.134. It has been declared as critical. This vulnerability affects the function ReadUnsigned of the file src/Simd/SimdMemoryStream.h. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. VDB-259054 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
- References
Affected packages
Git / github.com/ermig1979/simd
Affected versions
v.*
v.5.4.132
v.5.4.133
v4.*
v4.10.114
v4.2.67
v4.2.68
v4.2.69
v4.2.70
v4.2.71
v4.2.72
v4.2.73
v4.2.74
v4.3.75
v4.3.76
v4.3.77
v4.3.78
v4.3.79
v4.3.80
v4.3.81
v4.4.82
v4.4.83
v4.4.84
v4.5.85
v4.5.86
v4.5.87
v4.6.100
v4.6.88
v4.6.89
v4.6.90
v4.6.91
v4.6.93
v4.6.94
v4.6.95
v4.6.96
v4.6.97
v4.6.98
v4.6.99
v4.7.101
v4.7.102
v4.8.103
v4.9.104
v4.9.105
v4.9.106
v4.9.107
v4.9.108
v4.9.109
v4.9.110
v4.9.111
v4.9.112
v4.9.113
v5.*
v5.0.115
v5.0.116
v5.1.117
v5.1.118
v5.1.119
v5.2.120
v5.2.121
v5.2.122
v5.2.123
v5.2.124
v5.2.125
v5.3.126
v5.3.127
v5.3.128
v5.3.129
v5.3.130
v5.3.131
v6.*
v6.0.134