Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-6257

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp's go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary...

8.8CVSS7.2AI score0.00973EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2024-8669c2a944)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.00973EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.7 views

openSUSE Security Advisory (openSUSE-SU-2024:0269-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.00973EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.7 views

openSUSE Security Advisory (openSUSE-SU-2024:0268-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.00973EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/11/15 12:0 a.m.8 views

Fedora 41 : opentofu (2024-8669c2a944)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-8669c2a944 advisory. Automatic update for opentofu-1.7.3-3.fc41. Changelog Sat Jul 27 2024 Mikel Olasagasti Uranga - 1.7.3-3 - Fix for CVE-2024-6257 CVE-2024-6104...

8.8CVSS7.4AI score0.00973EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/08/31 12:0 a.m.61 views

openSUSE 15 Security Update : trivy (openSUSE-SU-2024:0269-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0269-1 advisory. trivy was updated to fix the following issues: Update to version 0.54.1: fixflag: incorrect behavior for deprected flag --clear-cache backport:...

8.8CVSS7.1AI score0.00973EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2024/08/31 12:0 a.m.80 views

openSUSE 15 Security Update : trivy (openSUSE-SU-2024:0268-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0268-1 advisory. trivy was updated to fix the following issues: Update to version 0.54.1: fixflag: incorrect behavior for deprected flag --clear-cache backport:...

8.8CVSS7.1AI score0.00973EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2024/08/08 12:0 a.m.35 views

Fedora 40 : opentofu (2024-c83208238d)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c83208238d advisory. Update to 1.8.0 ---- Fix for CVE-2024-6257 CVE-2024-6104 CVE-2024-24789 Tenable has extracted the preceding description block directly from the Fedo...

8.8CVSS7.4AI score0.00973EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.23 views

CBL Mariner 2.0 Security Update: terraform (CVE-2024-6257)

The version of terraform installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6257 advisory. - HashiCorp's go-getter library can be coerced into executing Git update on an existing maliciously modified...

8.8CVSS7.5AI score0.00973EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/08/05 3:22 a.m.29 views

CVE-2024-6257 affecting package terraform for versions less than 1.3.2-17

CVE-2024-6257 affecting package terraform for versions less than 1.3.2-17. A patched version of the package is available...

8.8CVSS8.5AI score0.00973EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/06/25 7:21 p.m.23 views

CVE-2024-6257

HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution...

7.7CVSS7.7AI score0.00973EPSS
Exploits0References3
Chainguard
Chainguard
added 2024/06/25 5:15 p.m.14 views

CVE-2024-6257 vulnerabilities

Vulnerabilities for packages: kots, opentofu, zot, terragrunt, conftest-fips, wolfictl, kubescape, grype, trivy-fips, zarf, tfsec, conftest, datadog-agent, k9s, datadog-agent-fips, snyk-cli, terraform, tflint, trivy...

8.8CVSS7AI score0.00973EPSS
Exploits0
Wolfi
Wolfi
added 2024/06/25 5:15 p.m.50 views

CVE-2024-6257 vulnerabilities

Vulnerabilities for packages: kubescape, tfsec, terragrunt, kots, trivy, conftest, datadog-agent, zot, k9s, wolfictl, zarf, terraform, snyk-cli, tflint, grype...

8.8CVSS7AI score0.00973EPSS
Exploits0
OSV
OSV
added 2024/06/25 5:15 p.m.4 views

AZL-42982 CVE-2024-6257 affecting package terraform for versions less than 1.3.2-17

HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution...

8.8CVSS7.2AI score0.00973EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/06/25 4:31 p.m.18 views

CVE-2024-6257

HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution...

8.8CVSS7.4AI score0.00973EPSS
Exploits0
Cvelist
Cvelist
added 2024/06/25 4:31 p.m.42 views

CVE-2024-6257 HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation

HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution...

8.4CVSS0.00973EPSS
Exploits0References1
Rows per page
Query Builder