Login Sign Up

CVE-2024-34402

8.6 HIGH
Remote Code Execution Denial of Service Buffer Overflow

📋 TL;DR

This vulnerability in uriparser allows attackers to trigger an integer overflow when processing long query keys or values, leading to buffer overflow. This could enable remote code execution or denial of service attacks. Any application using vulnerable versions of uriparser to parse URIs is affected.

💻 Affected Systems

Products:
  • uriparser
Versions: All versions through 0.9.7
Operating Systems: All operating systems using uriparser
Default Config Vulnerable: ⚠️ Yes
Notes: Any application linking against uriparser and processing untrusted URI queries is vulnerable.

📦 What is this software?

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Uriparser by Uriparser Project

View all CVEs affecting Uriparser →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the privileges of the application using uriparser, potentially leading to complete system compromise.

🟠

Likely Case

Denial of service through application crash, with potential for information disclosure via memory leaks.

🟢

If Mitigated

Application crash without code execution if memory protections like ASLR are enabled.

🌐 Internet-Facing: HIGH - Any internet-facing service parsing user-supplied URIs with uriparser is vulnerable.
🏢 Internal Only: MEDIUM - Internal applications processing untrusted URIs remain vulnerable.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires crafting malicious URIs with long query parameters to trigger the overflow.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 0.9.8 and later

Vendor Advisory: https://github.com/uriparser/uriparser/issues/183

Restart Required: Yes

Instructions:

1. Update uriparser to version 0.9.8 or later. 2. Recompile any applications using uriparser. 3. Restart affected services.

🔧 Temporary Workarounds

Input validation

all

Implement strict length limits on URI query keys and values before passing to uriparser.

Disable vulnerable functionality

all

If possible, disable URI query parsing in affected applications.

🧯 If You Can't Patch

  • Implement network segmentation to isolate vulnerable systems
  • Deploy web application firewall with URI length restrictions

🔍 How to Verify

Check if Vulnerable:

Check if uriparser version is 0.9.7 or earlier using package manager or ldd/ldconfig.

Check Version:

pkg-config --modversion uriparser  # or check package manager

Verify Fix Applied:

Verify uriparser version is 0.9.8 or later and applications have been recompiled.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes with segmentation faults
  • Unusually long URI queries in access logs

Network Indicators:

  • HTTP requests with extremely long query parameters
  • Multiple failed requests to URI parsing endpoints

SIEM Query:

source="web_logs" AND uri_query_length>1000

📊 Metadata

CVE ID: CVE-2024-34402
CVSS v3 Score: 8.6 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
CWE: CWE-190
Published: May 3, 2024
Last Updated: November 4, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-34402, you might also want to check these:

CVE-2025-64721 10.0

This vulnerability in Sandboxie allows sandboxed processes to exploit an integer overflow in the Sbi...

Same vulnerability type (CWE-190)
CVE-2025-52581 9.8

An integer overflow vulnerability in libbiosig's GDF file parsing allows arbitrary code execution wh...

Same vulnerability type (CWE-190)
CVE-2025-53518 9.8

An integer overflow vulnerability in libbiosig's ABF file parser allows arbitrary code execution whe...

Same vulnerability type (CWE-190)