Primary

Context

Fathom Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A buffer overflow vulnerability has been identified in Fathom version 2.4, specifically within the Authorization Code field. This vulnerability allows local attackers to cause a denial-of-service condition by submitting an oversized input string. By pasting a 6000-byte payload into the Authorization Code field and clicking 'Activate', the application crashes, demonstrating the exploitability of this issue.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to crash.

Reproduction

The vulnerability can be reproduced by running the Fathom application and navigating to the Authorization Code field. After pasting a 6000-byte payload into the field and clicking 'Activate', the application will crash, indicating successful exploitation.

Added: Apr 26, 2026, 10:36 PM

Updated: Apr 26, 2026, 10:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

6.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

6.8

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fathom Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating