CVE-2024-39924

An issue was discovered in Vaultwarden formerly BitwardenRS 1.30.3. A vulnerability has been identified in the authentication and authorization process of the endpoint responsible for altering the metadata of an emergency access. It permits an attacker with granted emergency access to escalate...

EUVD-2025-39924

Malicious code in dian-ketoprak60-sukiwir npm...

Linux Distros Unpatched Vulnerability : CVE-2025-39924

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: erofs: fix invalid algorithm for encoded extents The current algorithm sanity checks do not...

BELL-CVE-2025-39924 CVE-2025-39924 does not affect BellSoft software

Bulletin has no description...

DEBIAN-CVE-2025-39924

In the Linux kernel, the following vulnerability has been resolved: erofs: fix invalid algorithm for encoded extents The current algorithm sanity checks do not properly apply to new encoded extents. Unify the algorithm check with ZEROFSCOMPRESSIONRUNTIMEMAX and ensure consistency with...

CVE-2025-39924

In the Linux kernel, the following vulnerability has been resolved: erofs: fix invalid algorithm for encoded extents The current algorithm sanity checks do not properly apply to new encoded extents. Unify the algorithm check with ZEROFSCOMPRESSIONRUNTIMEMAX and ensure consistency with...

CVE-2025-39924

In the Linux kernel, the following vulnerability has been resolved: erofs: fix invalid algorithm for encoded extents The current algorithm sanity checks do not properly apply to new encoded extents. Unify the algorithm check with ZEROFSCOMPRESSIONRUNTIMEMAX and ensure consistency with...

MAL-2025-39924 Malicious code in xray-5nw-project (npm)

The package xray-5nw-project was found to contain malicious code...

Exploit for Incorrect Default Permissions in Dani-Garcia Vaultwarden

PoC-CVE-2024-39924 PoC and lab setup for CVE-2024-39924 De...

CVE-2024-39924

creationtimestamp| type| source ---|---|--- 2024-09-13 21:19:01+00:00| seen| https://t.me/cvedetector/5646 2025-01-09 18:20:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1012 2025-06-02 19:00:05+00:00| published-proof-of-concept|...

CVE-2023-39924

CVE-2023-39924 affects the WordPress plugin Mitchell Bennis Simple File List (versions

WordPress Simple File List Plugin <= 6.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Simple File List Type Plugin Vulnerable versions = 6.1.9 Fixed in 6.1.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-39924 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a8139274a95d Credits Bae Song Hyun Otwooo Required...

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-038)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-038 advisory. A NULL pointer exception flaw was found in Wireshark. A process failure on crafted or malformed input in the IPPUSB dissector can cause a denial of service via a packet injection or a crafted...

CVE-2022-39924

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2022. Notes: none...

CVE-2022-39924

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2022. Notes: none...

Amazon Linux 2022 : wireshark (ALAS2022-2022-226)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-226 advisory. - NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file CVE-2021-39920 - NULL pointer exception in the...

CVE-2021-39924 affecting package wireshark for versions less than 3.4.14-1

CVE-2021-39924 affecting package wireshark for versions less than 3.4.14-1. An upgraded version of the package is available that resolves this issue...

openSUSE: Security Advisory for wireshark (openSUSE-SU-2021:1566-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Mageia: Security Advisory (MGASA-2021-0518)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Photon OS 3.0: Wireshark PHSA-2022-3.0-0341

An update of the wireshark package has been released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0341. The text itself is copyright C VMware, Inc...