Lucene search
K

37 matches found

RedhatCVE
RedhatCVE
added 2026/03/07 7:59 a.m.5 views

CVE-2026-29038

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, there is a reflected cross-site scripting XSS vulnerability identified in the /rss/tag/ endpoint of changedetection.io. The taguuid path parameter is reflected directly in the HTTP response body...

6.1CVSS5.6AI score0.00282EPSS
Exploits1References1
Circl
Circl
added 2026/03/04 9:55 a.m.4 views

CVE-2026-29038

creationtimestamp| type| source ---|---|--- 2026-03-04 09:55:55+00:00| published-proof-of-concept| https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-8whx-v8qq-pq64 2026-03-04 12:53:37+00:00| seen| https://bsky.app/profile/pikapods.bsky.social/post/3mgadbi6nqp2k 2026-03-06...

6.1CVSS5.7AI score0.00282EPSS
Exploits1References3
Circl
Circl
added 2025/10/22 8:44 p.m.4 views

CVE-2024-29038

creationtimestamp| type| source ---|---|--- 2025-10-22 20:44:04+00:00| seen| Telegram/lwFPEqJRCOmTCmFYrFuUGU0u4yM2qsu7oqZAPNVVaao...

4.3CVSS6AI score0.0037EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 4: tpm2-tools (TSSA-2024:0270)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0270 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9CVSS6.1AI score0.00984EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-29038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected b...

4.3CVSS6.7AI score0.0037EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.10 views

Oracle Linux 9 : tpm2-tools (ELSA-2024-9424)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-9424 advisory. - tpm2checkquote: Fix check of magic number. CVE-2024-29038 - tpm2checkquote: Add comparison of pcr selection. CVE-2024-29039 Tenable has extracted the...

9CVSS5.8AI score0.00984EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2024/11/14 12:0 a.m.267 views

tpm2-tools security update

5.2-4 - Backport upstream fixes. - tpm2checkquote: Fix check of magic number. CVE-2024-29038 - tpm2checkquote: Add comparison of pcr selection. CVE-2024-29039 - Fix check of magic number. Resolves: RHEL-23198 Resolves: RHEL-41031 Resolves: RHEL-41035...

9CVSS6.9AI score0.00984EPSS
Exploits2
AlmaLinux
AlmaLinux
added 2024/11/12 12:0 a.m.15 views

Low: tpm2-tools security update

The tpm2-tools packages add a set of utilities for management and utilization of Trusted Platform Module TPM 2.0 devices from user space. Security Fixes: tpm2-tools: arbitrary quote data may go undetected by tpm2checkquote CVE-2024-29038 tpm2-tools: pcr selection value is not compared with the...

9CVSS6.7AI score0.00984EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.9 views

RHEL 9 : tpm2-tools (RHSA-2024:9424)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:9424 advisory. The tpm2-tools packages add a set of utilities for management and utilization of Trusted Platform Module TPM 2.0 devices from user space...

9CVSS6.1AI score0.00984EPSS
Exploits2References8
OSV
OSV
added 2024/08/30 11:9 a.m.6 views

OESA-2024-2081 tpm2-tools security update

The package contains the code for the TPM Trusted Platform Module 2.0 tools based on tpm2-tss. Security Fixes: tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This...

9CVSS7.1AI score0.00984EPSS
Exploits2References3
Amazon
Amazon
added 2024/08/15 12:0 a.m.5 views

Medium: tpm2-tools

Issue Overview: tpm2-tools: arbitrary quote data may go undetected by tpm2checkquote CVE-2024-29038 tpm2-tools: pcr selection value is not compared with the attest CVE-2024-29039 Affected Packages: tpm2-tools Issue Correction: Run dnf update tpm2-tools --releasever 2023.5.20240805 to update your...

9CVSS7.3AI score0.00984EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/07/20 12:0 a.m.15 views

CBL Mariner 2.0 Security Update: tpm2-tools (CVE-2024-29038)

The version of tpm2-tools installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29038 advisory. - tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker c...

4.3CVSS6.5AI score0.0037EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/07/18 4:30 p.m.9 views

CVE-2024-29038 affecting package tpm2-tools for versions less than 4.3.2-2

CVE-2024-29038 affecting package tpm2-tools for versions less than 4.3.2-2. A patched version of the package is available...

4.3CVSS4.8AI score0.0037EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2024/06/28 2:15 p.m.18 views

CVE-2024-29038

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS6.8AI score0.0037EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/06/28 1:44 p.m.15 views

CVE-2024-29038 tpm2 does not detect if quote was not generated by TPM

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS7.2AI score0.0037EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/06/28 1:44 p.m.20 views

CVE-2024-29038 tpm2 does not detect if quote was not generated by TPM

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS0.0037EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/06/28 1:44 p.m.16 views

CVE-2024-29038

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS6.7AI score0.0037EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2024/06/28 1:44 p.m.15 views

CVE-2024-29038

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS5.7AI score0.0037EPSS
Exploits1
OSV
OSV
added 2024/06/28 1:44 p.m.20 views

CVE-2024-29038 tpm2 does not detect if quote was not generated by TPM

tpm2-tools is the source repository for the Trusted Platform Module TPM2.0 tools. A malicious attacker can generate arbitrary quote data which is not detected by tpm2 checkquote. This issue was patched in version 5.7...

4.3CVSS5.2AI score0.0037EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.15 views

Fedora: Security Advisory for tpm2-tools (FEDORA-2024-3265d70b61)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS5.3AI score0.00984EPSS
Exploits2References2
Rows per page
Query Builder