115 matches found
Exploit for CVE-2024-2961
CVE-2026-22200: osTicket Arbitrary File Read to RCE...
TencentOS Server 3: glibc (TSSA-2024:0134)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0134 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2024-2961)
The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable. This plugin only works with...
Security Bulletin: The iconv() function in the GNU C Library affects IBM Data Observability by Databand Self-Hosted (CVE-2024-2961)
Summary The vulnerability regarding iconv function in the GNU C Library versions 2.39 and older was addressed in IBM Data Observability by Databand Self-Hosted. Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: The iconv function in the GNU C Library versions 2.39 and older may overflow the...
Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.10.1.6)
The version of AOS installed on the remote host is prior to 6.10.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.10.1.6 advisory. - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...
Oracle Linux 8 : glibc (ELSA-2025-20375)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20375 advisory. - CVE-2025-4802: static setuid dlopen may search LDLIBRARYPATH RHEL-92685 - CVE-2025-0395: Fix a buffer overflow in assert RHEL-83306 - CVE-2024-33599: nscd:...
TencentOS Server 3: glibc (TSSA-2024:0149)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0149 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Alibaba Cloud Linux 3 : 0070: glibc (ALINUX3-SA-2024:0070)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0070 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-2961: The iconv function in the GNU C...
Security Bulletin: Vulnerability in glibc affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.
Summary Potential vulnerability in glibc has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for additional information. Vulnerability...
Exploit for CVE-2024-2961
PHP file-read to RCE CVE-2024-2961 TODO Parse LIBC to kn...
RockyLinux 8 : glibc (RLSA-2024:3269)
The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:3269 advisory. glibc: Out of bounds write in iconv may lead to remote code execution CVE-2024-2961 Tenable has extracted the preceding description block directly from the...
glibc security update
An update is available for glibc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...
RLSA-2024:3269 Important: glibc security update
The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc: Ou...
Exploit for Deserialization of Untrusted Data in Themekraft Buddyforms
usage: python exploit.py "/wp-admin/admin-ajax.php" 'bash -c "ba...
Exploit for CVE-2024-2961
Buddyforms 2.7.7 CNEXT RCE Abusing CVE-2024-2961 and CVE-2023...
Security update for glibc
This update for glibc fixes the following issues: Fixed security issues: CVE-2024-33602: Use timet for return type of addgetnetgrentX bsc1223425 CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache bsc1223423 CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response...
Fedora: Security Advisory (FEDORA-2025-c17ef0f176)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Vulnerability in GNU glibc affects IBM Integrated Analytics System [CVE-2024-2961]
Summary Redhat provided GNU glibc is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2024-2961 Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: GNU C Library could allow a remote attacker to execute arbitrary code on the system,...
glibc/iconv Vulnerability (CVE-2024-2961)
PMASA-2025-3 Announcement-ID: PMASA-2025-3 Date: 2025-01-21 Summary glibc/iconv Vulnerability CVE-2024-2961 Description There was a vulnerability found in glibc/iconv that could potentially affect phpMyAdmin under specific circumstances. By default, phpMyAdmin is not vulnerable, but since we use...
Security Bulletin: IBM DataPower Gateway potentially vulnerable to RCE vulnerability
Summary IBM DataPower Gateway does not support the affected character-set. Out of an abundance of caution, IBM has applied the remediation for this CVE. Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: GNU C Library could allow a remote attacker to execute arbitrary code on the system, caus...