Lucene search
K

66 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : yajl-2.1.0-11.el8 (AXSA:2022-4173:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4173:02 advisory. yajl: heap-based buffer overflow when handling large inputs due to an integer overflow CVE-2022-24795 Tenable has extracted the preceding description block...

7.5CVSS5.9AI score0.03472EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-24795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer overflow which leads to...

7.5CVSS7.6AI score0.03472EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.9 views

Azure Linux 3.0 Security Update: rubygem-yajl-ruby (CVE-2022-24795)

The version of rubygem-yajl-ruby installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-24795 advisory. - yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the...

7.5CVSS7.8AI score0.03472EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/07/24 1:52 a.m.18 views

CVE-2022-24795 affecting package rubygem-yajl-ruby for versions less than 1.4.3-1

CVE-2022-24795 affecting package rubygem-yajl-ruby for versions less than 1.4.3-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7AI score0.03472EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 8 : yajl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - yajl: heap-based buffer overflow when handling large inputs due to an integer overflow CVE-2022-24795 -...

7.5CVSS9.1AI score0.03472EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2024/04/25 3:13 p.m.373 views

Moderate: Red Hat Security Advisory: yajl security update

An update for yajl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.5CVSS6.8AI score0.03472EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/04/25 12:0 a.m.31 views

RHEL 8 : yajl (RHSA-2024:2063)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2063 advisory. Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C, and a small validating JSON generator. Securi...

7.5CVSS7.1AI score0.03472EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.17 views

CentOS 9 : yajl-2.1.0-21.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the yajl-2.1.0-21.el9 build changelog. - yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer overflow whic...

7.5CVSS7.8AI score0.03472EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.21 views

Rocky Linux 8 : yajl (RLSA-2022:7524)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7524 advisory. - yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer overflow which leads to...

7.5CVSS7.8AI score0.03472EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/08/07 12:0 a.m.14 views

Debian: Security Advisory (DLA-3516-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.03735EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2023/08/05 12:0 a.m.26 views

Debian dla-3516 : burp - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3516 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3516-1 [email protected]...

7.5CVSS6.8AI score0.03735EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2023/07/28 12:0 a.m.26 views

Fedora: Security Advisory for yajl (FEDORA-2023-852b377773)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.03735EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2023/07/27 12:0 a.m.23 views

Fedora 37 : yajl (2023-852b377773)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-852b377773 advisory. Security fix for memory leaks leading to denial of service CVE-2023-33460. Security fix for integer overflow leading to heap corruption CVE-2022-247...

7.5CVSS6.7AI score0.03472EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2023/07/19 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-6233-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.03735EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2023/07/18 1:31 p.m.402 views

USN-6233-1: YAJL vulnerabilities

It was discovered that YAJL was not properly performing bounds checks when decoding a string with escape sequences. If a user or automated system using YAJL were tricked into processing specially crafted input, an attacker could possibly use this issue to cause a denial of service application...

7.5CVSS6.7AI score0.03735EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/07/16 12:0 a.m.25 views

Fedora 38 : yajl (2023-00572178e1)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-00572178e1 advisory. Security fix for memory leaks leading to denial of service CVE-2023-33460. Security fix for integer overflow leading to heap corruption CVE-2022-247...

7.5CVSS6.7AI score0.03472EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2023/07/12 12:0 a.m.20 views

Debian: Security Advisory (DLA-3492-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.03735EPSS
Exploits3References4
Debian
Debian
added 2023/07/11 5:48 p.m.28 views

[SECURITY] [DLA 3492-1] yajl security update

Debian LTS Advisory DLA-3492-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost July 11, 2023 https://wiki.debian.org/LTS Package : yajl Version : 2.1.0-3+deb10u2 CVE ID : CVE-2017-16516 CVE-2022-24795 CVE-2023-33460 Debian Bug : 1040036 Multiple vulnerabilties have...

7.5CVSS6.7AI score0.03735EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/07/01 12:0 a.m.21 views

Amazon Linux 2 : yajl (ALAS-2023-2101)

The version of yajl installed on the remote host is prior to 2.0.4-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2101 advisory. yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer...

7.5CVSS7.9AI score0.03472EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/06/13 12:0 a.m.35 views

EulerOS Virtualization 3.0.6.0 : yajl (EulerOS-SA-2023-2217)

According to the versions of the yajl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an...

7.5CVSS7.8AI score0.03472EPSS
Exploits1References2
Rows per page
Query Builder