Lucene search
PhotonPHSA-2024-4.0-0592HistoryApr 17, 2024 - 12:00 a.m.
Critical Photon OS Security Update - PHSA-2024-4.0-0592
2024-04-1700:00:00
github.com
photon os
security update
phsa-2024-4.0-0592
wireshark
openssl
ruby
linux-aws
suricata
libvirt
linux-rt
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.1%
Updates of [‘libvirt’, ‘openssl’, ‘suricata’, ‘ruby’, ‘linux’, ‘linux-aws’, ‘linux-rt’, ‘linux-secure’, ‘wireshark’] packages of Photon OS have been released.
Related
photon
photon
Important Photon OS Security Update - PHSA-2024-5.0-0246
2024-04-15 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0247
2024-04-16 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0248
2024-04-17 00:00:00
redos
redos
ROS-20240423-02
2024-04-23 00:00:00
ROS-20240522-04
2024-05-22 00:00:00
osv
osv
ruby2.3, ruby2.5, ruby2.7, ruby3.0, ruby3.1 vulnerabilities
2023-07-12 14:47:58
URI gem has ReDoS vulnerability
2023-06-29 15:30:34
CVE-2023-36617
2023-06-29 13:15:09
cvelist
cvelist
CVE-2023-36617
2023-06-29 00:00:00
CVE-2024-28870 Suricata uses excessive resource use in malformed ssh traffic parsing
2024-04-03 21:13:48
CVE-2021-41816
2022-02-06 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2023-2851)
2023-09-20 00:00:00
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2023-2800)
2023-09-11 00:00:00
Ubuntu: Security Advisory (USN-6219-1)
2023-07-13 00:00:00
redhatcve
redhatcve
cloudfoundry
cloudfoundry
USN-6219-1: Ruby vulnerabilities | Cloud Foundry
2023-09-28 00:00:00
USN-6055-2: Ruby regression | Cloud Foundry
2023-06-30 00:00:00
nvd
nvd
ubuntucve
ubuntucve
debiancve
debiancve
nessus
nessus
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : Ruby vulnerabilities (USN-6219-1)
2023-07-12 00:00:00
EulerOS 2.0 SP10 : ruby (EulerOS-SA-2023-2824)
2024-01-16 00:00:00
EulerOS 2.0 SP10 : ruby (EulerOS-SA-2023-2800)
2024-01-16 00:00:00
hackerone
hackerone
Internet Bug Bounty: CVE-2023-36617: ReDoS vulnerability in URI (Ruby)
2023-07-17 05:09:41
Internet Bug Bounty: Buffer Overflow in optimized_escape_html method
2022-01-20 13:37:51
github
github
URI gem has ReDoS vulnerability
2023-06-29 15:30:34
Buffer overrun in CGI.escape_html
2021-12-14 21:36:20
Ruby URI component ReDoS issue
2023-03-31 06:30:15
prion
prion
Design/Logic Flaw
2023-06-29 13:15:00
Integer overflow
2022-02-06 21:15:00
cve
cve
ubuntu
ubuntu
Ruby vulnerabilities
2023-07-12 00:00:00
libvirt vulnerabilities
2024-04-15 00:00:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2023-06-30 03:59:11
Resource Consumption And Excessive Logging
2024-04-16 15:00:02
Denial Of Service (DoS)
2021-11-25 17:08:05
rubygems
rubygems
ReDoS vulnerability in URI
2023-06-28 21:00:00
amazon
amazon
Medium: libvirt
2024-04-11 01:07:00
Medium: wireshark
2024-04-24 22:15:00
Medium: edk2
2024-05-09 19:16:00
redhat
redhat
(RHSA-2024:2236) Moderate: libvirt security update
2024-04-30 06:15:07
rocky
rocky
ruby:3.1 security, bug fix, and enhancement update
2024-04-05 14:57:12
ruby:3.1 security, bug fix, and enhancement update
2024-03-27 04:34:32
virt:rhel and virt-devel:rhel security update
2024-06-14 13:59:30
oraclelinux
oraclelinux
ruby:3.1 security, bug fix, and enhancement update
2024-03-20 00:00:00
ruby:3.1 security, bug fix, and enhancement update
2024-04-02 00:00:00
libvirt security update
2024-05-03 00:00:00
almalinux
almalinux
Moderate: ruby:3.1 security, bug fix, and enhancement update
2024-03-19 00:00:00
Moderate: ruby:3.1 security, bug fix, and enhancement update
2024-04-01 00:00:00
Moderate: libvirt security update
2024-04-30 00:00:00
cnvd
cnvd
Ruby Buffer Overflow Vulnerability (CNVD-2022-18048)
2021-11-29 00:00:00
alpinelinux
alpinelinux
freebsd
freebsd
rubygem-cgi -- buffer overrun in CGI.escape_html
2021-11-24 00:00:00
OpenSSL -- Unbounded memory growth with session handling in TLSv1.3
2024-04-08 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-36617 affecting package ruby for versions less than 3.1.4-2
2023-08-30 14:44:06
CVE-2024-2511 affecting package openssl for versions less than 3.3.0-1
2024-05-17 21:38:35
CVE-2024-2496 affecting package libvirt for versions less than 7.10.0-8
2024-04-09 20:48:36
cgr
cgr
CVE-2023-36617 vulnerabilities
2024-05-19 03:07:16
CVE-2024-2511 vulnerabilities
2024-05-19 03:07:16
CVE-2023-28755 vulnerabilities
2024-05-19 03:07:16
openssl
openssl
Vulnerability in OpenSSL CVE-2024-2511
2024-04-08 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerability
2024-04-13 19:56:38
Updated wireshark packages fix security vulnerability
2024-04-26 09:47:12
Updated libvirt packages fix security vulnerability
2024-05-09 05:40:29
wolfi
wolfi
CVE-2023-36617 vulnerabilities
2024-06-21 03:08:19
CVE-2024-2511 vulnerabilities
2024-06-21 03:08:19
fedora
fedora
[SECURITY] Fedora 38 Update: ruby-3.2.4-182.fc38
2024-05-04 02:20:05
[SECURITY] Fedora 39 Update: wireshark-4.0.14-1.fc39
2024-04-17 02:19:30
[SECURITY] Fedora 40 Update: wireshark-4.2.4-1.fc40
2024-04-19 21:43:11
vulnrichment
vulnrichment
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.1%
Related for PHSA-2024-4.0-0592