CVE-2024-48958
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-48958
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-48958.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-48958
- Downstream
- Related
- Published
- 2024-10-10T02:15:03Z
- Modified
- 2025-11-05T14:19:27.360388Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
executefilterdelta in archivereadsupportformatrar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
- References
-
- https://github.com/terrynini/CVE-Reports/tree/main/CVE-2024-48958
- https://github.com/libarchive/libarchive/compare/v3.7.4...v3.7.5
- https://github.com/libarchive/libarchive/pull/2148
- http://seclists.org/fulldisclosure/2025/Apr/11
- http://seclists.org/fulldisclosure/2025/Apr/12
- http://seclists.org/fulldisclosure/2025/Apr/13
- http://seclists.org/fulldisclosure/2025/Apr/4
- http://seclists.org/fulldisclosure/2025/Apr/8