CVE-2024-8946 | MicroPython 1.23.0 VFS Unmount extmod/vfs.c mp_vfs_umount heap-based overflow (Issue 13006)

CVE-2024-8946 | MicroPython 1.23.0 VFS Unmount extmod/vfs.c mp_vfs_umount heap-based overflow (Issue 13006)

A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mp_vfs_umount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2024-8946. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.