What is the severity of CVE-2024-12355?

CVE-2024-12355 is classified as a problematic vulnerability due to improper input validation.

How do I fix CVE-2024-12355?

To fix CVE-2024-12355, ensure that proper input validation is implemented in the ContactBook::adding function of ContactBook.cpp.

What systems are affected by CVE-2024-12355?

CVE-2024-12355 affects SourceCodester Phone Contact Manager System version 1.0.

Can CVE-2024-12355 lead to data compromise?

Yes, if exploited, CVE-2024-12355 could potentially lead to unauthorized data manipulation.

What is the attack vector for CVE-2024-12355?

The attack vector for CVE-2024-12355 involves manipulating the input to the ContactBook::adding function.

Vulnerability/
CVE-2024-12355

high

7.8

CWE

9/12/2024

12/12/2024

CVE-2024-12355: SourceCodester Phone Contact Manager System ContactBook.cpp adding input validation

First published: Mon Dec 09 2024(Updated: )

A vulnerability has been found in SourceCodester Phone Contact Manager System 1.0 and classified as problematic. Affected by this vulnerability is the function ContactBook::adding of the file ContactBook.cpp. The manipulation leads to improper input validation. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

Credit: cna@vuldb.com

Affected Software	Affected Version	How to fix
Razormist Phone Contact Manager System	=1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-12355?
CVE-2024-12355 is classified as a problematic vulnerability due to improper input validation.
How do I fix CVE-2024-12355?
To fix CVE-2024-12355, ensure that proper input validation is implemented in the ContactBook::adding function of ContactBook.cpp.
What systems are affected by CVE-2024-12355?
CVE-2024-12355 affects SourceCodester Phone Contact Manager System version 1.0.
Can CVE-2024-12355 lead to data compromise?
Yes, if exploited, CVE-2024-12355 could potentially lead to unauthorized data manipulation.
What is the attack vector for CVE-2024-12355?
The attack vector for CVE-2024-12355 involves manipulating the input to the ContactBook::adding function.

agent/title
agent/references
agent/weakness
agent/description
agent/type
agent/first-publish-date
agent/author
agent/event
agent/severity
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
vendor/razormist
canonical/razormist phone contact manager system
version/razormist phone contact manager system/1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.