CVE-2024-5436
31.05.2024, 09:15
Type confusion in Snapchat LensCore could lead to denial of service or arbitrary code execution prior to version 12.88. We recommend upgrading to version 12.88 or above.
| Vendor | Product | Version |
|---|---|---|
| snap | snapchat_lenscore | 𝑥 < 12.88 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-704 - Incorrect Type Conversion or CastThe software does not correctly convert an object, resource, or structure from one type to a different type.
- CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')The program allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.