An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service (DoS) attacks and possibly remote code execution via the \xB0\x00\x3c byte sequence.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 03 Sep 2025 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Uci idol2
CPEs cpe:2.3:a:uci:idol2:*:*:*:*:*:*:*:*
Vendors & Products Uci idol2

Thu, 22 Aug 2024 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Uci
Uci idol 2
Weaknesses CWE-119
CWE-20
CPEs cpe:2.3:a:uci:idol_2:*:*:*:*:*:*:*:*
Vendors & Products Uci
Uci idol 2
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 22 Aug 2024 03:45:00 +0000

Type Values Removed Values Added
Description An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Service (DoS) attacks and possibly remote code execution via the \xB0\x00\x3c byte sequence.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-22T14:37:58.392Z

Reserved: 2024-08-22T00:00:00

Link: CVE-2024-45169

cve-icon Vulnrichment

Updated: 2024-08-22T14:37:52.237Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-22T04:15:27.583

Modified: 2025-09-04T10:57:49.540

Link: CVE-2024-45169

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.