142 matches found
MiracleLinux 7 : bind-9.11.4-26.P2.10.0.1.el7.AXS7 (AXSA:2022-3876:04)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3876:04 advisory. bind: memory leak in ECDSA DNSSEC verification code CVE-2022-38177 bind: memory leaks in EdDSA DNSSEC verification code CVE-2022-38178 Tenable has...
EUVD-2025-38178
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful exploitati...
Linux Distros Unpatched Vulnerability : CVE-2025-38178
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: EDAC/igen6: Fix NULL pointer dereference A kernel panic was reported with the following kern...
CVE-2025-38178
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
UBUNTU-CVE-2025-38178
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2025-38178
...
TencentOS Server 4: bind (TSSA-2024:0612)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0612 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
ABB M2M Gateway Memory Leak in embedded Bind (CVE-2022-38178)
By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources. This plugin only works with Tenable.ot. Please visit...
ISC BIND 9 Vulnerable to Denial-of-Service (DoS) via Memory Leaks in EdDSA DNSSEC Verification (CVE-2022-38178)
BIND 9 is vulnerable to a denial-of-service DoS issue due to the presence of a memory leak flaw in the DNSSEC verification code for the EdDSA algorithm that can occur when there is a signature length mismatch. An attacker could spoof the target resolver with responses that have malformed EdDSA...
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware
The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw in Windows to infect devices with malware known as RokRAT. The vulnerability in question is CVE-2024-38178 CVSS score: 7.5, a memory corruption bug in the Scripting Engine...
CVE-2024-38178
Scripting Engine Memory Corruption Vulnerability...
CVE-2024-38178
Scripting Engine Memory Corruption Vulnerability...
CVE-2024-38178
creationtimestamp| type| source ---|---|--- 2024-08-13 18:05:01+00:00| seen| https://www.thezdi.com/blog/2024/8/13/the-august-2024-security-update-review 2024-08-13 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-08-13 21:18:40+00:00| seen| https://t.me/cvedetector/3072...
CVE-2024-38178 Scripting Engine Memory Corruption Vulnerability
...
CVE-2024-38178
CVE-2024-38178 is a Microsoft Windows Scripting Engine memory corruption vulnerability that exists in Edge when running Internet Explorer mode. It enables remote code execution and is being actively exploited in the wild, with public pressure reflected in multiple advisories and exploit catalogs....
bind and bind-dyndb-ldap security update
bind 9.16.23-18.0.1.6 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-18.6 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-18.5 - Backport addition of max-records-per-type and max-records-per-type options 32:9.16.23-18.2 - Resolve CVE-2024-1975 -...
Oracle Linux 9 : bind / and / bind-dyndb-ldap (ELSA-2024-5231)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5231 advisory. - Minor fix of reclimit test backport CVE-2024-1737 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Resolve CVE-2024-4076 - Prevent crashing at...
CVE-2022-38178 affecting package dhcp for versions less than 4.4.3-2
CVE-2022-38178 affecting package dhcp for versions less than 4.4.3-2. A patched version of the package is available...
BIT-DOTNET-2023-38178 .NET Core and Visual Studio Denial of Service Vulnerability
.NET Core and Visual Studio Denial of Service Vulnerability...
CentOS 9 : bind-9.16.23-7.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the bind-9.16.23-7.el9 build changelog. - BIND 9.11.0 - 9.11.36 9.12.0 - 9.16.26 9.17.0 - 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 - 9.11.36-S1 9.16.8-S1 - 9.16.26-S1...