Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2023-34462

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. The...

6.5CVSS6.7AI score0.02459EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/08 8:35 a.m.30 views

Security Bulletin: IBM Maximo Application Suite uses multiple packages which are vulnerable to multiple CVEs

Summary IBM Maximo Application Suite uses golang.org/x/net/http2 - v0.19.0 , v0.20.0, github.com/lestrrat-go/jwx/v2 - v2.0.11, setuptools - 50.3.2, tar - 6.2.0, github.com/docker/docker - v24.0.7, follow-redirects - 1.15.4, express - 4.18.2 , idna - 3.6 ,org.apache.cxfcxf-core - 3.5.5,...

9.3CVSS8.4AI score0.05849EPSS
Exploits6Affected Software1
OpenVAS
OpenVAS
added 2024/09/06 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-6994-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.99999EPSS
Exploits20References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.20 views

RHEL 9 : netty (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - netty: SniHandler 16MB allocation leads to OOM CVE-2023-34462 Note that Nessus has not tested for this issue but ha...

6.5CVSS7.2AI score0.02459EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.26 views

RHEL 8 : netty (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - netty: SniHandler 16MB allocation leads to OOM CVE-2023-34462 Note that Nessus has not tested for this issue but ha...

6.5CVSS7.2AI score0.02459EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/10 8:34 p.m.15 views

Security Bulletin: IBM Sterling B2B Integrator is vulnerable to denial of service due to Netty (CVE-2023-34462)

Summary IBM Sterling B2B Integrator uses Netty. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-34462 DESCRIPTION: Netty is vulnerable to a denial of service, caused by a flaw with allocating up to 16MB of heap for each channel durin...

6.5CVSS7AI score0.02459EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/19 3:24 p.m.22 views

Security Bulletin: Multiple vulnerabilities affect Apache Solr, Apache Zookeeper and Logstash shipped with IBM Operations Analytics - Log Analysis

Summary The following security issues have been identified in Netty component included as part of Apache Solr, Apache Zookeeper and Logstash product Vulnerability Details CVEID:CVE-2023-34462 DESCRIPTION: Netty is vulnerable to a denial of service, caused by a flaw with allocating up to 16MB of...

7.4CVSS7.7AI score0.02459EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.22 views

openSUSE: Security Advisory for netty, netty (SUSE-SU-2023:2974-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.02459EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/31 1:3 p.m.19 views

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Netty denial of service vulnerabilitiy [ CVE-2023-34462]

Summary Potential Go Nett denial of service vulnerabilitiy have been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. CVE-2023-34462 Vulnerability Details CVEID:CVE-2023-34462 DESCRIPTIO...

6.5CVSS7.1AI score0.02459EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/18 12:9 p.m.47 views

Security Bulletin: IBM Asset Data Dictionary Component uses netty-codec-http2-4.1.94, netty-handler-4.1.86 and netty-handler-4.1.92 which is vulnerable to CVE-2023-44487 and CVE-2023-34462

Summary IBM Asset Data Dictionary Component uses netty-codec-http2-4.1.94, netty-handler-4.1.86 and netty-handler-4.1.92 which is vulnerable to CVE-2023-44487 and CVE-2023-34462. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

7.5CVSS7.9AI score0.99999EPSS
Exploits20Affected Software1
RedHat Linux
RedHat Linux
added 2024/01/10 1:30 p.m.49 views

Important: Red Hat Security Advisory: Red Hat Integration Camel K 1.10.5 release and security update

Red Hat Integration Camel K 1.10.5 release and security update is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02459EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/12/27 12:0 a.m.89 views

Oracle TimesTen 18.x < 18.1.4.39.0, 22.x < 22.1.1.18.0 Multiple Vulnerabilities (October 2023 CPU)

The version of Oracle TimesTen installed on the remote host is 18.x prior to 18.1.4.39.0 or 22.x prior to 22.1.1.18.0. It is, therefore, affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory: - Security-in-Depth issue in the TimesTen In-Memory Database product of...

9.8CVSS6.8AI score0.02459EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2023/12/07 1:41 p.m.62 views

Moderate: Red Hat Security Advisory: AMQ Clients 2023.Q4

An update is now available for Red Hat AMQ Clients Red Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the Reference...

9.8CVSS7.1AI score0.99615EPSS
Exploits12References13
RedHat Linux
RedHat Linux
added 2023/12/06 10:7 p.m.41 views

Moderate: Red Hat Security Advisory: Red Hat build of Cryostat 2.4.0: new RHEL 8 container images

New Red Hat build of Cryostat 2.4.0 on RHEL 8 container images are now available New Red Hat build of Cryostat 2.4.0 on RHEL 8 container images have been released, adding a variety of features and bug fixes. Users of the Red Hat build of Cryostat 2.3.1 on RHEL 8 container images are advised to...

6.5CVSS6.6AI score0.02459EPSS
Exploits2References9
IBM Security Bulletins
IBM Security Bulletins
added 2023/11/29 1:11 a.m.30 views

Security Bulletin: IBM InfoSphere Information Server is affected but not vulnerable to a vulnerability in Netty (CVE-2023-34462)

Summary A denial of service vulnerability in Netty used by InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2023-34462 DESCRIPTION: Netty is vulnerable to a denial of service, caused by a flaw with allocating up to 16MB of heap for each channel during the TLS handshake...

6.5CVSS7AI score0.02459EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2023/11/20 12:0 a.m.39 views

Debian: Security Advisory (DSA-5558-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.99999EPSS
Exploits20References6
Tenable Nessus
Tenable Nessus
added 2023/11/18 12:0 a.m.48 views

Debian DSA-5558-1 : netty - security update

The remote Debian 11 / 12 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-5558 advisory. - Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. The...

7.5CVSS7.4AI score0.99999EPSS
Exploits20References9
IBM Security Bulletins
IBM Security Bulletins
added 2023/11/06 11:23 a.m.65 views

Security Bulletin: Due to use of Netty, IBM® MobileFirst Platform is vulnerable to a denial of service.

Summary Netty is used by IBM® MobileFirst Platform. CVE-2023-34462 Vulnerability Details CVEID:CVE-2023-34462 DESCRIPTION: Netty is vulnerable to a denial of service, caused by a flaw with allocating up to 16MB of heap for each channel during the TLS handshake the SniHandler class. By sending a...

6.5CVSS6.9AI score0.02459EPSS
Exploits1Affected Software1
NCSC
NCSC
added 2023/10/19 12:0 a.m.57 views

Vulnerabilities fixed in Oracle Communications Applications

Vulnerabilities have been fixed in Oracle Communications Applications products. A malicious party could exploit them to carry out attacks that can result in the following categories of damage: Denial-of-Service DoS. Remote code execution Administrator/Root privileges Access to sensitive data Acce...

9.8CVSS7.7AI score0.76768EPSS
Exploits41
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/18 9:27 a.m.26 views

Security Bulletin: Netty handler component is vulnerable to CVE-2023-34462 is used by IBM Maximo Application Suite

Summary Security Bulletin: Netty handler component is vulnerable to CVE-2023-34462 is used by IBM Maximo Application Suite Vulnerability Details CVEID:CVE-2023-34462 DESCRIPTION: Netty is vulnerable to a denial of service, caused by a flaw with allocating up to 16MB of heap for each channel durin...

6.5CVSS6.9AI score0.02459EPSS
Exploits1Affected Software1
Rows per page
Query Builder