Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-42378

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvari function...

7.2CVSS7.3AI score0.02542EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.6 views

Siemens SIMATIC S7-1500 TM MFP BIOS Use After Free (CVE-2021-42378)

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvari function. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900...

7.2CVSS7.5AI score0.02542EPSS
Exploits0References9
Debian
Debian
added 2025/01/19 11:19 a.m.26 views

[SECURITY] [DLA 4019-1] busybox security update

Debian LTS Advisory DLA-4019-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost January 19, 2025 https://wiki.debian.org/LTS Package : busybox Version : 1:1.30.1-6+deb11u1 CVE ID : CVE-2021-28831 CVE-2021-42374 CVE-2021-42378 CVE-2021-42379 CVE-2021-42380 CVE-2021-423...

9.8CVSS7.5AI score0.02979EPSS
Exploits3
OSV
OSV
added 2023/08/31 12:14 p.m.0 views

BELL-CVE-2021-42378 CVE-2021-42378 does not affect BellSoft software

Bulletin has no description...

7.2CVSS5.8AI score0.02542EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.32 views

CBL Mariner 2.0 Security Update: busybox (CVE-2021-42378)

The version of busybox installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-42378 advisory. - A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when...

7.2CVSS7.5AI score0.02542EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:4253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.32381EPSS
Exploits21References21
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.20 views

CVE-2021-42378 affecting package busybox for versions less than 1.35.0-1

CVE-2021-42378 affecting package busybox for versions less than 1.35.0-1. An upgraded version of the package is available that resolves this issue...

7.2CVSS8.5AI score0.02542EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/03/02 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1287)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.8AI score0.02793EPSS
Exploits1References2
Cloud Foundry
Cloud Foundry
added 2022/01/20 12:0 a.m.57 views

USN-5179-1: BusyBox vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use...

7.5CVSS7.8AI score0.02793EPSS
Exploits1Affected Software2
CBLMariner
CBLMariner
added 2022/01/10 3:59 a.m.19 views

CVE-2021-42378 affecting package busybox 1.32.0-2

CVE-2021-42378 affecting package busybox 1.32.0-2. An upgraded version of the package is available that resolves this issue...

7.2CVSS9.9AI score0.02542EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/12/08 12:0 a.m.61 views

Ubuntu 18.04 LTS / 20.04 LTS : BusyBox vulnerabilities (USN-5179-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5179-1 advisory. It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processin...

7.5CVSS7.6AI score0.02793EPSS
Exploits1References11
Ubuntu
Ubuntu
added 2021/12/07 12:44 p.m.432 views

USN-5179-1: BusyBox vulnerabilities

It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use this issue to cause BusyBox to crash, resulting in a denial of service, or possibly execute...

7.5CVSS7.5AI score0.02793EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/12/04 12:0 a.m.29 views

Fedora: Security Advisory for busybox (FEDORA-2021-c52c0fe490)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS6.6AI score0.03379EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/12/04 12:0 a.m.36 views

Fedora: Security Advisory for busybox (FEDORA-2021-5a95823596)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS6.6AI score0.03379EPSS
Exploits1References2
OSV
OSV
added 2021/12/03 11:3 a.m.3 views

OESA-2021-1449 busybox security update

BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: A...

7.2CVSS7.6AI score0.02793EPSS
Exploits0References9
Mageia
Mageia
added 2021/12/02 4:49 p.m.115 views

Updated busybox packages fix security vulnerability

A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input. CVE-2021-42376 An attacker-controlled...

9.8CVSS2.7AI score0.03379EPSS
Exploits0References2
Circl
Circl
added 2021/11/17 4:26 p.m.3 views

CVE-2021-42378

creationtimestamp| type| source ---|---|--- 2021-11-17 16:26:45+00:00| seen| https://t.me/cibsecurity/32499 2022-08-25 11:00:04+00:00| seen| https://t.me/poxek/2360...

7.2CVSS7AI score0.02542EPSS
Exploits0References2
CVE
CVE
added 2021/11/15 12:0 a.m.249 views

CVE-2021-42378

CVE-2021-42378 is a use-after-free in BusyBox’s awk applet that can cause denial of service and potentially code execution when processing crafted awk patterns in getvar_i. Connected documents confirm the issue across multiple OS/package tracks (e.g., Debian/DLA advisories reference BusyBox patte...

7.2CVSS7.2AI score0.02542EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder