CVE-2024-54028 – Catdoc OLE Document DIFAT Parser Integer Underflow Heap-Based Memory Corruption

June 2, 2025

CVE ID : CVE-2024-54028

Published : June 2, 2025, 3:15 p.m. | 4 hours, 9 minutes ago

Description : An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability.

Severity: 8.4 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-57459 – CloudClassroom PHP Project SQL Injection Vulnerability

Next Article Audacious 4.5 Beta Brings New Plugins, Better PipeWire Support

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Building smarter interactions with MCP elicitation: From clunky tool calls to seamless user experiences

From Zero to MCP: Simplifying AI Integrations with xmcp

Distribution Release: Linux Mint 22.2

Coded Smorgasbord: Basically, a Smorgasbord

Drupal 11’s AI Features: What They Actually Mean for Your Team

Drupal 11’s AI Features: What They Actually Mean for Your Team

Why Data Governance Matters More Than Ever in 2025?

Perficient Included in the IDC Market Glance for Digital Business Professional Services, 3Q25

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

CVE-2024-54028 – Catdoc OLE Document DIFAT Parser Integer Underflow Heap-Based Memory Corruption

Critical Linux UDisks Daemon Vulnerability (CVE-2025-8067) Exposes Privileged Data to Local Attackers

Google Slapped with $381 Million Fine in France Over Gmail Ads, Cookie Consent Missteps

CVE-2025-40672 – ProactivaNet from Grupo Espiral MS Privilege Escalation Vulnerability

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

A Comprehensive Guide to Understanding TypeScript Record Type

CVE-2025-2011 – WordPress Slider & Popup Builder by Depicter SQL Injection Vulnerability

Microsoft trials redesigned Windows 11 Widgets Board with new Copilot Discover feed — AI curated stories right on your desktop

Your Customers See More Than Reality: Is Your Mobile Strategy Keeping Up?

Microsoft Brings GPT-5 Across Its Products, Starting Today

17 Years in Motion: How We Transform, Adapt, and Stay Strong

CVE-2024-54028 – Catdoc OLE Document DIFAT Parser Integer Underflow Heap-Based Memory Corruption

Related Posts