Lucene search
K

65 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.5 views

RHCOS 4 / 9 : OpenShift Container Platform 4.16.4 (RHSA-2024:4616)

The remote Red Hat Enterprise Linux CoreOS 4 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4616 advisory. - golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 - jinja2: accepts keys containing non-attribute...

5.9CVSS6.8AI score0.01001EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : runc-1.1.13-4.el9 (AXSA:2024-9101:06)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9101:06 advisory. golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 Tenable has extracted the preceding description block directly from the MiracleLinu...

5.9CVSS5.6AI score0.01001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : grafana-9.2.10-17.el8_10 (AXSA:2024-8676:11)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8676:11 advisory. golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 golang: archive/zip: Incorrect handling of certain ZIP files CVE-2024-2478...

9.8CVSS8.5AI score0.01952EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2025/07/16 7:39 p.m.10 views

K000152608: Golang vulnerabilities CVE-2023-39320, CVE-2023-39323, CVE-2023-45289, and CVE-2024-24788

Security Advisory Description CVE-2023-39320 The go.mod toolchain directive, introduced in Go 1.21, can be leveraged to execute scripts and binaries relative to the root of the module when the "go" command was executed within the module. This applies to modules downloaded using the "go" command...

9.8CVSS7.7AI score0.01762EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 3: grafana (TSSA-2024:0391)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0391 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.5AI score0.01952EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.11 views

Fedora: Security Advisory (FEDORA-2025-77ace1a41b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.1AI score0.01001EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.15 views

Alibaba Cloud Linux 3 : 0184: grafana (ALINUX3-SA-2024:0184)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0184 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-24788: A malformed DNS message in...

9.8CVSS7.5AI score0.01952EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.5 views

Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

9.8CVSS7.3AI score0.01952EPSS
Exploits0References14
OSV
OSV
added 2025/05/07 7:11 p.m.4 views

RLSA-2024:5291 Moderate: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 golang: archive/zip: Incorrect handling of certain ZIP files CVE-2024-24789 golang: net/netip:...

7.5CVSS6.5AI score0.01952EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/04/23 12:0 a.m.8 views

Fedora: Security Advisory (FEDORA-2025-f974cb8ce5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.2AI score0.01001EPSS
Exploits2References6
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 2:48 a.m.77 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for September and October 2024.

Summary Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.3-IF037 and 24.0.0-IF003. Vulnerability Details CVEID:CVE-2024-39249 DESCRIPTION: Async is vulnerable to a denial of service, caused by the ReDoS Regular Expression Denial of Service while...

8.5CVSS9.9AI score0.91969EPSS
Exploits1Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.5 views

RockyLinux 9 : oci-seccomp-bpf-hook (RLSA-2024:9277)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:9277 advisory. golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 Tenable has extracted the preceding description block directly from the RockyLinux...

5.9CVSS7.4AI score0.01001EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.9 views

RockyLinux 9 : runc (RLSA-2024:9200)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:9200 advisory. golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 Tenable has extracted the preceding description block directly from the RockyLinux...

5.9CVSS7.4AI score0.01001EPSS
Exploits0References3
OSV
OSV
added 2025/03/17 8:16 p.m.22 views

RLSA-2024:9135 Moderate: toolbox security update

Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI. Security Fixes: golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in...

7.5CVSS7.1AI score0.01414EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-24788

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop. CVE-2024-24788 Note that Nessus relies on the...

5.9CVSS7.2AI score0.01001EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.14 views

Security Bulletin: IBM Storage Protect Server is susceptible to multiple vulnerabilities due to Golang Go ( CVE-2024-24787, CVE-2024-24788 ).

Summary Golang Go is used by the IBM Storage Protect Server OSSM component. Golang Go is vulnerable to loss of integrity and availability of host system. This bulletin identifies the steps to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-24787 DESCRIPTION: Golang Go could allo...

6.4CVSS8.6AI score0.01001EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.11 views

Oracle Linux 9 : oci-seccomp-bpf-hook (ELSA-2024-9277)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-9277 advisory. 1.2.10-2 - rebuild - Resolves: RHEL-35939 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

5.9CVSS7.4AI score0.01001EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/11/12 9:15 a.m.8 views

Moderate: Red Hat Security Advisory: oci-seccomp-bpf-hook security update

An update for oci-seccomp-bpf-hook is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.9CVSS6.8AI score0.01001EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/11/12 9:14 a.m.31 views

Moderate: Red Hat Security Advisory: skopeo security update

An update for skopeo is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.3CVSS6.8AI score0.01414EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/11/12 9:10 a.m.23 views

Moderate: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.8AI score0.01414EPSS
Exploits0References5
Rows per page
Query Builder