{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-11097","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2024-11-11T20:23:06.166Z","datePublished":"2024-11-12T02:00:13.839Z","dateUpdated":"2024-11-12T15:57:10.398Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2024-11-12T02:00:13.839Z"},"title":"SourceCodester Student Record Management System Main Menu infinite loop","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-835","lang":"en","description":"Infinite Loop"}]},{"descriptions":[{"type":"CWE","cweId":"CWE-404","lang":"en","description":"Denial of Service"}]}],"affected":[{"vendor":"SourceCodester","product":"Student Record Management System","versions":[{"version":"1.0","status":"affected"}],"modules":["Main Menu"]}],"descriptions":[{"lang":"en","value":"A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulation leads to infinite loop. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used."},{"lang":"de","value":"In SourceCodester Student Record Management System 1.0 wurde eine problematische Schwachstelle gefunden. Dabei geht es um eine nicht genauer bekannte Funktion der Komponente Main Menu. Durch Manipulieren mit unbekannten Daten kann eine infinite loop-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs hat dabei lokal zu erfolgen. Der Exploit steht zur öffentlichen Verfügung."}],"metrics":[{"cvssV4_0":{"version":"4.0","baseScore":4.8,"vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N","baseSeverity":"MEDIUM"}},{"cvssV3_1":{"version":"3.1","baseScore":3.3,"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","baseSeverity":"LOW"}},{"cvssV3_0":{"version":"3.0","baseScore":3.3,"vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","baseSeverity":"LOW"}},{"cvssV2_0":{"version":"2.0","baseScore":1.7,"vectorString":"AV:L/AC:L/Au:S/C:N/I:N/A:P"}}],"timeline":[{"time":"2024-11-11T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2024-11-11T01:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2024-11-11T21:28:31.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"polaris0x1 (VulDB User)","type":"reporter"}],"references":[{"url":"https://vuldb.com/?id.283918","name":"VDB-283918 | SourceCodester Student Record Management System Main Menu infinite loop","tags":["vdb-entry"]},{"url":"https://vuldb.com/?ctiid.283918","name":"VDB-283918 | CTI Indicators (IOB, IOC)","tags":["signature","permissions-required"]},{"url":"https://vuldb.com/?submit.441237","name":"Submit #441237 | SourceCodester Student Record Management System in C++ with Source Code V1.0 Input Buffer Pollution Vulnerability","tags":["third-party-advisory"]},{"url":"https://github.com/Hacker0xone/CVE/issues/5","tags":["exploit","issue-tracking"]},{"url":"https://www.sourcecodester.com/","tags":["product"]}]},"adp":[{"affected":[{"vendor":"sourcecodester","product":"student_record_management_system","cpes":["cpe:2.3:a:sourcecodester:student_record_management_system:1.0:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"1.0","status":"affected"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-11-12T15:55:23.721965Z","id":"CVE-2024-11097","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-11-12T15:57:10.398Z"}}]}}