Description

LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.

INFO

Published Date :

2025-07-07T00:00:00.000Z

Last Modified :

2025-11-03T18:08:15.606Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-25176 vulnerability.

Vendors Products
Luajit
  • Luajit
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-25176.

URL Resource
https://gist.github.com/pwnhacker0x18/cd75d01fc7c9b6c85c183fbe5353d276 cve-icon cve-icon cve-icon
https://github.com/LuaJIT/LuaJIT/commit/343ce0edaf3906a62022936175b2f5410024cbfc cve-icon cve-icon cve-icon
https://github.com/LuaJIT/LuaJIT/issues/1149 cve-icon cve-icon cve-icon cve-icon
https://github.com/openresty/luajit2/commit/343ce0edaf3906a62022936175b2f5410024cbfc cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/08/msg00022.html cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-25176 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-25176 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact