Lucene search
K

5 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2024/09/28 12:0 a.m.5 views

maven-archetype-3.3.0-1.1 on GA media (moderate)

maven-archetype-3.3.0-1.1 on GA media Announcement ID: openSUSE-SU-2024:14372-1 Rating: moderate Cross-References: CVE-2024-47197 CVSS scores: CVE-2024-47197 SUSE : 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can no...

4CVSS7.9AI score0.00839EPSS
Exploits0
Circl
Circl
added 2024/09/26 11:16 a.m.7 views

CVE-2024-47197

creationtimestamp| type| source ---|---|--- 2024-09-26 11:16:57+00:00| seen| https://t.me/cvedetector/6388 2025-03-17 18:31:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7810...

7.5CVSS5.6AI score0.00839EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2024/09/26 9:31 a.m.20 views

at.stderr:archetype-simple (=1.4.1), at.stderr:maven-parent (=2.3.1) +1 more potentially affected by CVE-2024-47197 via org.apache.maven.plugins:maven-archetype-plugin (=3.2.1)

org.apache.maven.plugins:maven-archetype-plugin MAVEN version =3.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.maven.plugins:maven-archetype-plugin and may be impacted: - at.stderr:archetype-simple =1.4.1 - at.stderr:maven-parent =2.3....

7.5CVSS6.4AI score0.00839EPSS
Exploits0
OSV
OSV
added 2024/09/26 8:1 a.m.9 views

CVE-2024-47197 Maven Archetype Plugin: Maven Archetype integration-test may package local settings into the published artifact, possibly containing credentials

Exposure of Sensitive Information to an Unauthorized Actor, Insecure Storage of Sensitive Information vulnerability in Maven Archetype Plugin. This issue affects Maven Archetype Plugin: from 3.2.1 before 3.3.0. Users are recommended to upgrade to version 3.3.0, which fixes the issue. Archetype...

7.5CVSS6.5AI score0.00839EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/09/26 8:1 a.m.14 views

CVE-2024-47197 Maven Archetype Plugin: Maven Archetype integration-test may package local settings into the published artifact, possibly containing credentials

Exposure of Sensitive Information to an Unauthorized Actor, Insecure Storage of Sensitive Information vulnerability in Maven Archetype Plugin. This issue affects Maven Archetype Plugin: from 3.2.1 before 3.3.0. Users are recommended to upgrade to version 3.3.0, which fixes the issue. Archetype...

6.8AI score0.00839EPSS
Exploits0References1
Rows per page
Query Builder