/

CVE-2023-24785 Report - Details, Severity, & Advisorie...

CVE-2023-24785 Report - Details, Severity, & Advisories

Twingate Team

Feb 1, 2024

CVE-2023-24785 is a medium-severity vulnerability found in Giorgio Tani's PeaZip software, specifically version 9.0.0. This issue allows attackers to cause a denial of service through the End of Archive tag function in the software's UNPEA feature. While the exact types of systems affected are not explicitly mentioned, it is important to be aware of this vulnerability and take necessary precautions to protect your software and data.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, you should check if you're using Giorgio Tani's PeaZip software, specifically version 9.0.0. This vulnerability can cause a denial of service issue in the software. If you're using this version of PeaZip, you may be at risk. No information about affected Apple product versions is available from the provided sources.

What should I do if I'm affected?

If you're affected by the vulnerability, update your PeaZip software to version 9.1.0 or newer, which addresses the issue. This will help protect your system from the denial of service attack related to the vulnerability. Always keep your software up-to-date to ensure optimal security.

Is this in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-24785 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This medium-severity issue affects PeaZip version 9.0.0 and can cause a denial of service attack. The vulnerability was added to the NVD on February 28, 2023. No specific due date or required action is mentioned for this vulnerability.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-770, which involves resource allocation issues, which can lead to a denial of service attack, causing system freezing and CPU exhaustion.

For more details

CVE-2023-24785 is a medium-severity vulnerability in PeaZip 9.0.0 that can lead to denial of service attacks. For a comprehensive understanding of this issue, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

CVE-2023-24785 Report - Details, Severity, & Advisorie...

CVE-2023-24785 Report - Details, Severity, & Advisories

Twingate Team

Feb 1, 2024

CVE-2023-24785 is a medium-severity vulnerability found in Giorgio Tani's PeaZip software, specifically version 9.0.0. This issue allows attackers to cause a denial of service through the End of Archive tag function in the software's UNPEA feature. While the exact types of systems affected are not explicitly mentioned, it is important to be aware of this vulnerability and take necessary precautions to protect your software and data.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, you should check if you're using Giorgio Tani's PeaZip software, specifically version 9.0.0. This vulnerability can cause a denial of service issue in the software. If you're using this version of PeaZip, you may be at risk. No information about affected Apple product versions is available from the provided sources.

What should I do if I'm affected?

If you're affected by the vulnerability, update your PeaZip software to version 9.1.0 or newer, which addresses the issue. This will help protect your system from the denial of service attack related to the vulnerability. Always keep your software up-to-date to ensure optimal security.

Is this in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-24785 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This medium-severity issue affects PeaZip version 9.0.0 and can cause a denial of service attack. The vulnerability was added to the NVD on February 28, 2023. No specific due date or required action is mentioned for this vulnerability.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-770, which involves resource allocation issues, which can lead to a denial of service attack, causing system freezing and CPU exhaustion.

For more details

CVE-2023-24785 is a medium-severity vulnerability in PeaZip 9.0.0 that can lead to denial of service attacks. For a comprehensive understanding of this issue, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

CVE-2023-24785 Report - Details, Severity, & Advisories

Twingate Team

Feb 1, 2024

CVE-2023-24785 is a medium-severity vulnerability found in Giorgio Tani's PeaZip software, specifically version 9.0.0. This issue allows attackers to cause a denial of service through the End of Archive tag function in the software's UNPEA feature. While the exact types of systems affected are not explicitly mentioned, it is important to be aware of this vulnerability and take necessary precautions to protect your software and data.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, you should check if you're using Giorgio Tani's PeaZip software, specifically version 9.0.0. This vulnerability can cause a denial of service issue in the software. If you're using this version of PeaZip, you may be at risk. No information about affected Apple product versions is available from the provided sources.

What should I do if I'm affected?

If you're affected by the vulnerability, update your PeaZip software to version 9.1.0 or newer, which addresses the issue. This will help protect your system from the denial of service attack related to the vulnerability. Always keep your software up-to-date to ensure optimal security.

Is this in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-24785 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This medium-severity issue affects PeaZip version 9.0.0 and can cause a denial of service attack. The vulnerability was added to the NVD on February 28, 2023. No specific due date or required action is mentioned for this vulnerability.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-770, which involves resource allocation issues, which can lead to a denial of service attack, causing system freezing and CPU exhaustion.

For more details

CVE-2023-24785 is a medium-severity vulnerability in PeaZip 9.0.0 that can lead to denial of service attacks. For a comprehensive understanding of this issue, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.