{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-28T21:08:06.707","vulnerabilities":[{"cve":{"id":"CVE-2024-24806","sourceIdentifier":"security-advisories@github.com","published":"2024-02-07T22:15:10.173","lastModified":"2026-06-17T07:14:55.463","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"libuv is a multi-platform support library with a focus on asynchronous I/O. The `uv_getaddrinfo` function in `src/unix/getaddrinfo.c` (and its windows counterpart `src/win/getaddrinfo.c`), truncates hostnames to 256 characters before calling `getaddrinfo`. This behavior can be exploited to create addresses like `0x00007f000001`, which are considered valid by `getaddrinfo` and could allow an attacker to craft payloads that resolve to unintended IP addresses, bypassing developer checks. The vulnerability arises due to how the `hostname_ascii` variable (with a length of 256 bytes) is handled in `uv_getaddrinfo` and subsequently in `uv__idna_toascii`. When the hostname exceeds 256 characters, it gets truncated without a terminating null byte. As a result attackers may be able to access internal APIs or for websites (similar to MySpace) that allows users to have `username.example.com` pages. Internal services that crawl or cache these user pages can be exposed to SSRF attacks if a malicious user chooses a long vulnerable username. This issue has been addressed in release version 1.48.0. Users are advised to upgrade. There are no known workarounds for this vulnerability."},{"lang":"es","value":"libuv es una librería de soporte multiplataforma centrada en E/S asíncrona. La función `uv_getaddrinfo` en `src/unix/getaddrinfo.c` (y su contraparte de Windows `src/win/getaddrinfo.c`), trunca los nombres de host a 256 caracteres antes de llamar a `getaddrinfo`. Este comportamiento se puede aprovechar para crear direcciones como `0x00007f000001`, que `getaddrinfo` considera válidas y podrían permitir a un atacante crear payloads que se resuelvan en direcciones IP no deseadas, evitando las comprobaciones de los desarrolladores. La vulnerabilidad surge debido a cómo se maneja la variable `hostname_ascii` (con una longitud de 256 bytes) en `uv_getaddrinfo` y posteriormente en `uv__idna_toascii`. Cuando el nombre de host supera los 256 caracteres, se trunca sin un byte nulo final. Como resultado, los atacantes pueden acceder a API internas o a sitios web (similares a MySpace) que permiten a los usuarios tener páginas `nombre de usuario.ejemplo.com`. Los servicios internos que rastrean o almacenan en caché estas páginas de usuario pueden quedar expuestos a ataques SSRF si un usuario malintencionado elige un nombre de usuario largo y vulnerable. Este problema se solucionó en la versión 1.48.0. Se recomienda a los usuarios que actualicen. No se conocen workarounds para esta vulnerabilidad."}],"affected":[{"source":"security-advisories@github.com","affectedData":[{"vendor":"libuv","product":"libuv","versions":[{"version":">= 1.45.0, < 1.48.0","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-02-21T20:41:52.764681Z","id":"CVE-2024-24806","options":[{"exploitation":"poc"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:libuv:libuv:*:*:*:*:*:*:*:*","versionStartIncluding":"1.24.0","versionEndExcluding":"1.48.0","matchCriteriaId":"7A5D8905-1DA8-45F4-886D-2FDAA3C722DF"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2024/02/08/2","source":"security-advisories@github.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2024/02/11/1","source":"security-advisories@github.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2024/03/11/1","source":"security-advisories@github.com"},{"url":"https://github.com/libuv/libuv/commit/0f2d7e784a256b54b2385043438848047bc2a629","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/commit/3530bcc30350d4a6ccf35d2f7b33e23292b9de70","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/commit/c858a147643de38a09dd4164758ae5b685f2b488","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/commit/e0327e1d508b8207c9150b6e582f0adf26213c39","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://gitlab.kitware.com/cmake/cmake/-/issues/26112","source":"security-advisories@github.com"},{"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00005.html","source":"security-advisories@github.com"},{"url":"https://security.netapp.com/advisory/ntap-20240605-0008/","source":"security-advisories@github.com"},{"url":"http://www.openwall.com/lists/oss-security/2024/02/08/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2024/02/11/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2024/03/11/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/libuv/libuv/commit/0f2d7e784a256b54b2385043438848047bc2a629","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/commit/3530bcc30350d4a6ccf35d2f7b33e23292b9de70","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/commit/c858a147643de38a09dd4164758ae5b685f2b488","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/commit/e0327e1d508b8207c9150b6e582f0adf26213c39","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]},{"url":"https://gitlab.kitware.com/cmake/cmake/-/issues/26112","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20240605-0008/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}