MiracleLinux 9 : frr-8.3.1-5.el9.ML.1 (AXSA:2023-5523:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5523:02 advisory. frr: out-of-bounds read in the BGP daemon may lead to information disclosure or denial of service CVE-2022-37032 Tenable has extracted the preceding...

Siemens Ruggedcom ROX Out-of-bounds Read (CVE-2022-37032)

An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgpcapabilitymsgparse in bgpd/bgppacket.c. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

Linux Distros Unpatched Vulnerability : CVE-2022-37032

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgpcapabilitymsgparse...

TencentOS Server 3: frr (TSSA-2023:0082)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0082 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2023-37032

creationtimestamp| type| source ---|---|--- 2025-01-21 23:15:45+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbybbizar2j...

CVE-2023-37032

A Stack-based buffer overflow in the Mobile Management Entity MME of Magma versions = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows remote attackers to crash the MME with an unauthenticated cellphone by sending a NAS packet containing an oversized Emergency Number Lis...

CVE-2023-37032

A Stack-based buffer overflow in the Mobile Management Entity MME of Magma versions = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows remote attackers to crash the MME with an unauthenticated cellphone by sending a NAS packet containing an oversized Emergency Number Lis...

CVE-2023-37032

A Stack-based buffer overflow in the Mobile Management Entity MME of Magma versions = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows remote attackers to crash the MME with an unauthenticated cellphone by sending a NAS packet containing an oversized Emergency Number Lis...

CVE-2023-37032

CVE-2023-37032 corresponds to a stack-based buffer overflow in the Magma MME component. Affected: Magma versions

openSUSE Security Advisory (SUSE-SU-2024:3478-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:3478-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 / openSUSE 15 Security Update : quagga (SUSE-SU-2024:3478-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3478-1 advisory. - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. bsc1230866 -...

SUSE-SU-2024:3478-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. bsc1230866 - CVE-2024-44070: crash when parsing Tunnel Encap attribute due to no length check. bsc1229438 - CVE-2022-37032: out-of-bounds read when...

SUSE: Security Advisory (SUSE-SU-2024:3433-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : quagga (SUSE-SU-2024:3433-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3433-1 advisory. - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. bsc1230866 - CVE-2024-44070: cra...

SUSE: Security Advisory (SUSE-SU-2024:3426-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2024:3426-1 Security update for quagga

This update for quagga fixes the following issues: - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. bsc1230866 - CVE-2024-44070: crash when parsing Tunnel Encap attribute due to no length check. bsc1229438 - CVE-2022-37032: out-of-bounds read when...

Exploit for Path Traversal in Ollama

CVE-2024-37032 Path traversal in Ollama with rogue registry se...

CVE-2024-37032

creationtimestamp| type| source ---|---|--- 2024-06-24 15:59:41+00:00| exploited| https://t.me/thehackernews/5160 2024-06-24 16:09:00+00:00| published-proof-of-concept| https://t.me/thebugbountyhunter/8857 2024-06-24 17:23:47+00:00| seen| Telegram/D72CBnrV0jT4PhmXXxYvHey-QA1u71lig1pFKrejfVwjTGU...

Probllama: Ollama Remote Code Execution Vulnerability (CVE-2024-37032) – Overview and Mitigations

Wiz Research discovered CVE-2024-37032, an easy-to-exploit Remote Code Execution vulnerability in the open-source AI Infrastructure project Ollama...