EMI v.1.1.10 and before, fixed in v.1.1.11, contains an Improper Validation of Specified Index, Position, or Offset in Input vulnerability. The specific issue is a failure to validate slot index and decrement stack count in EMI mod for Minecraft, which allows in-game item duplication.
References
Link | Resource |
---|---|
https://gist.github.com/apple502j/6d691b62c37fc37b03b0784917064df6 | Third Party Advisory |
https://github.com/emilyploszaj/emi/blob/1.21/xplat/src/main/java/dev/emi/emi/network/FillRecipeC2SPacket.java | Issue Tracking |
Configurations
History
19 Sep 2024, 14:40
Type | Values Removed | Values Added |
---|---|---|
First Time |
Emilyploszaj emi
Emilyploszaj |
|
References | () https://gist.github.com/apple502j/6d691b62c37fc37b03b0784917064df6 - Third Party Advisory | |
References | () https://github.com/emilyploszaj/emi/blob/1.21/xplat/src/main/java/dev/emi/emi/network/FillRecipeC2SPacket.java - Issue Tracking | |
CPE | cpe:2.3:a:emilyploszaj:emi:*:*:*:*:*:minecraft:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.3 |
CWE | CWE-129 |
29 Aug 2024, 13:25
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
28 Aug 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-28 17:15
Updated : 2024-09-19 14:40
NVD link : CVE-2024-41564
Mitre link : CVE-2024-41564
CVE.ORG link : CVE-2024-41564
JSON object : View
Products Affected
emilyploszaj
- emi
CWE
CWE-129
Improper Validation of Array Index