{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"state": "REJECTED", "cveId": "CVE-2024-31745", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-04-25T16:02:25.354Z", "dateRejected": "2024-04-25T00:00:00.000Z", "dateReserved": "2024-04-05T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-04-25T16:02:25.354Z"}, "rejectedReasons": [{"lang": "en", "value": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-2002. Reason: This candidate is a duplicate of CVE-2024-2002. Notes: All CVE users should reference CVE-2024-2002 instead of this candidate."}]}}}

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"state": "REJECTED", "cveId": "CVE-2024-31745", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-04-25T16:02:25.354Z", "dateRejected": "2024-04-25T00:00:00.000Z", "dateReserved": "2024-04-05T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-04-25T16:02:25.354Z"}, "rejectedReasons": [{"lang": "en", "value": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-2002. Reason: This candidate is a duplicate of CVE-2024-2002. Notes: All CVE users should reference CVE-2024-2002 instead of this candidate."}]}}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-2002. Reason: This candidate is a duplicate of CVE-2024-2002. Notes: All CVE users should reference CVE-2024-2002 instead of this candidate."}], "id": "CVE-2024-31745", "lastModified": "2024-04-25T16:15:11.227", "metrics": {}, "published": "2024-04-19T13:15:13.573", "references": [], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Rejected"}

{"bugzilla": {"description": "libdwarf: use after free in dw_empty_errlist_item in dwarf_alloc.c", "id": "2276140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276140"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-416", "details": ["A flaw was found in libdwarf. An attacker may use a specially-crafted file to trigger a use-after-free condition, which can potentially lead to an application crash or other unexpected behavior."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-31745", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "libdwarf", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Will not fix", "package_name": "libdwarf", "product_name": "Red Hat Enterprise Linux 8"}], "public_date": "2024-04-19T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-31745\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-31745"], "statement": "The use-after-free vulnerability in libdwarf, specifically within the dw_empty_errlist_item function in dwarf_alloc.c, is classified as a moderate severity issue due to its potential impact on application stability and integrity. While use-after-free vulnerabilities can lead to unpredictable behavior, crashes, or potential code execution, exploiting this flaw requires crafting a specially-crafted file and triggering the vulnerability through specific conditions. Additionally, the vulnerability is limited to the context of applications utilizing libdwarf for DWARF debugging information processing. While the risk is significant for affected applications, the complexity and specific conditions required for exploitation mitigate the severity to moderate.", "threat_severity": "Moderate"}

{}