CVE-2024-4741

🗓️ 13 Nov 2024 11:04:15Reported by opensslType

cve🔗 web.nvd.nist.gov📰️ 20 Media mentions👁 3303 Views

CVE-2024-4741 security problem reservation

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 174
Cvelist	CVE-2024-4741 Use After Free with SSL_free_buffers	13 Nov 202410:20	–	cvelist
NVD	CVE-2024-4741	13 Nov 202411:15	–	nvd
Tenable Nessus	SUSE SLES15 Security Update : openssl-1_1 (SUSE-SU-2024:2089-1)	20 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2024:2088-1)	20 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssl-1_1 (SUSE-SU-2024:2051-1)	19 Jun 202400:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssl-1_1 (SUSE-SU-2024:2059-1)	19 Jun 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP12 : openssl (EulerOS-SA-2024-2354)	10 Sep 202400:00	–	nessus
Tenable Nessus	Photon OS 5.0: Openssl PHSA-2024-5.0-0301	24 Jul 202400:00	–	nessus
Tenable Nessus	FreeBSD : OpenSSL -- Use after free vulnerability (73a697d7-1d0f-11ef-a490-84a93843eb75)	29 May 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : openssl-1_1 (SUSE-SU-2024:2035-1)	18 Jun 202400:00	–	nessus

[
  {
    "defaultStatus": "unaffected",
    "product": "OpenSSL",
    "vendor": "OpenSSL",
    "versions": [
      {
        "lessThan": "3.3.1",
        "status": "affected",
        "version": "3.3.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.2.2",
        "status": "affected",
        "version": "3.2.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.1.6",
        "status": "affected",
        "version": "3.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "3.0.14",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "1.1.1y",
        "status": "affected",
        "version": "1.1.1",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
openssl	www.openssl.org/news/secadv/20240528.txt
github	www.github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8
github	www.github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4
github	www.github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177
github	www.github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d
github	www.github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Nov 2024 11:15Current

7.7High risk

Vulners AI Score7.7

CVSS37.5

EPSS0.00092

SSVC

CWE-416