Buffer Overflow Vulnerability in Explorer++

Posted date 17/01/2024
4 - High
Affected Resources
  • Explorer++.exe, version.

INCIBE has coordinated the publication of a high severity vulnerability affecting Explorer++.exe, version, a lightweight and fast file manager for Windows, which has been discovered by Rafael Pedrero.

This vulnerability have been assigned the following code, CVSS v3.1 base score, CVSS vector and the CWE vulnerability type of each vulnerability:

  • CVE-2024-0645: 7.3 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H | CWE-119 


There is no reported solution at this time.

  • CVE-2024-0645: buffer overflow vulnerability in Explorer++ affecting version A local attacker could execute arbitrary code via a long filename argument by monitoring Structured Exception Handler (SEH) records.
References list