25 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-32884
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Botan is a C++ cryptography library. Prior to version 3.11.0, during processing of an X.509 certificate path using name constraints which restrict the set of...
DEBIAN-CVE-2026-32884
Botan is a C++ cryptography library. Prior to version 3.11.0, during processing of an X.509 certificate path using name constraints which restrict the set of allowable DNS names, if no subject alternative name is defined in the end-entity certificate Botan would check that the CN was allowed by t...
CVE-2026-32884
Botan is a C++ cryptography library. Prior to version 3.11.0, during processing of an X.509 certificate path using name constraints which restrict the set of allowable DNS names, if no subject alternative name is defined in the end-entity certificate Botan would check that the CN was allowed by t...
Duplicate Advisory: gix-transport code execution vulnerability
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-rrjw-j4m2-mf34. This link is maintained to preserve external references. Original Description The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone...
CVE-2024-32884
gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...
CVE-2025-32884
An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone number is very sensitive information because it can be tied back to individuals. The app does not encrypt the GID in messages...
CVE-2025-32884
creationtimestamp| type| source ---|---|--- 2025-05-01 18:15:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14361...
CVE-2025-32884
An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone number is very sensitive information because it can be tied back to individuals. The app does not encrypt the GID in messages...
CVE-2024-32884 vulnerabilities
Vulnerabilities for packages: cargo-audit...
CVE-2024-32884 vulnerabilities
Vulnerabilities for packages: cargo-audit...
Azure Linux 3.0 Security Update: rust (CVE-2024-32884)
The version of rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32884 advisory. - gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for tex...
CBL Mariner 2.0 Security Update: rust (CVE-2024-32884)
The version of rust installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32884 advisory. - gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for tex...
CVE-2024-32884 affecting package rust for versions less than 1.72.0-8
CVE-2024-32884 affecting package rust for versions less than 1.72.0-8. A patched version of the package is available...
CVE-2024-32884 affecting package rust for versions less than 1.75.0-9
CVE-2024-32884 affecting package rust for versions less than 1.75.0-9. A patched version of the package is available...
CVE-2024-32884 affecting package rust for versions less than 1.75.0-9
CVE-2024-32884 affecting package rust for versions less than 1.75.0-9. A patched version of the package is available...
AZL-40264 CVE-2024-32884 affecting package rust for versions less than 1.72.0-8
gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...
endringer (>=0.1.0 <=0.7.1) potentially affected by CVE-2024-32884 via gix (=0.0.0)
gix CARGO version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on gix and may be impacted: - endringer =0.1.0, =0.7.1 Source cves: CVE-2024-32884 Source advisory: OSV:GHSA-98P4-XJMM-8MFH...
CVE-2024-32884
creationtimestamp| type| source ---|---|--- 2024-04-13 13:04:03+00:00| published-proof-of-concept| https://github.com/GitoxideLabs/gitoxide/security/advisories/GHSA-98p4-xjmm-8mfh...
CVE-2023-32884
creationtimestamp| type| source ---|---|--- 2024-01-02 04:27:04+00:00| seen| https://t.me/ctinow/161479 2024-01-03 01:31:47+00:00| seen| https://t.me/cibsecurity/74134 2024-01-22 15:11:30+00:00| seen| https://t.me/ctinow/171206...
CVE-2023-32884
In netdagent, there is a possible information disclosure due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944011; Issue ID: ALPS07944011...