Lucene search
K

115 matches found

GithubExploit
GithubExploit
added 2026/03/03 11:37 a.m.303 views

Exploit for CVE-2024-2961

CVE-2026-22200: osTicket Arbitrary File Read to RCE...

8.7CVSS7.6AI score0.8833EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.11 views

TencentOS Server 3: glibc (TSSA-2024:0134)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0134 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.3CVSS7.3AI score0.8833EPSS
Exploits16References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.10 views

Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2024-2961)

The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable. This plugin only works with...

7.3CVSS7.5AI score0.8833EPSS
Exploits16References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/25 12:51 p.m.21 views

Security Bulletin: The iconv() function in the GNU C Library affects IBM Data Observability by Databand Self-Hosted (CVE-2024-2961)

Summary The vulnerability regarding iconv function in the GNU C Library versions 2.39 and older was addressed in IBM Data Observability by Databand Self-Hosted. Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: The iconv function in the GNU C Library versions 2.39 and older may overflow the...

7.3CVSS6.7AI score0.8833EPSS
Exploits16Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.18 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.10.1.6)

The version of AOS installed on the remote host is prior to 6.10.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.10.1.6 advisory. - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors...

9.8CVSS7.6AI score0.8833EPSS
Exploits22References8
Tenable Nessus
Tenable Nessus
added 2025/06/17 12:0 a.m.12 views

Oracle Linux 8 : glibc (ELSA-2025-20375)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20375 advisory. - CVE-2025-4802: static setuid dlopen may search LDLIBRARYPATH RHEL-92685 - CVE-2025-0395: Fix a buffer overflow in assert RHEL-83306 - CVE-2024-33599: nscd:...

8.1CVSS7.4AI score0.8833EPSS
Exploits45References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.12 views

TencentOS Server 3: glibc (TSSA-2024:0149)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0149 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.3CVSS7.6AI score0.8833EPSS
Exploits16References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.11 views

Alibaba Cloud Linux 3 : 0070: glibc (ALINUX3-SA-2024:0070)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0070 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-2961: The iconv function in the GNU C...

7.3CVSS7.6AI score0.8833EPSS
Exploits16References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/12 5:3 p.m.23 views

Security Bulletin: Vulnerability in glibc affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.

Summary Potential vulnerability in glibc has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for additional information. Vulnerability...

8.1CVSS9.6AI score0.8833EPSS
Exploits16Affected Software2
GithubExploit
GithubExploit
added 2025/02/20 9:41 a.m.510 views

Exploit for CVE-2024-2961

PHP file-read to RCE CVE-2024-2961 TODO Parse LIBC to kn...

7.3CVSS7.8AI score0.8833EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2025/02/14 12:0 a.m.13 views

RockyLinux 8 : glibc (RLSA-2024:3269)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:3269 advisory. glibc: Out of bounds write in iconv may lead to remote code execution CVE-2024-2961 Tenable has extracted the preceding description block directly from the...

7.3CVSS8.2AI score0.8833EPSS
Exploits16References3
Rockylinux
Rockylinux
added 2025/02/13 8:34 p.m.18 views

glibc security update

An update is available for glibc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The glibc packages provide the standard C libraries libc, POSIX thread librarie...

7.3CVSS8.2AI score0.8833EPSS
Exploits16
OSV
OSV
added 2025/02/13 8:34 p.m.12 views

RLSA-2024:3269 Important: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc: Ou...

7.3CVSS8.1AI score0.8833EPSS
Exploits16References2
GithubExploit
GithubExploit
added 2025/02/12 3:31 p.m.717 views

Exploit for Deserialization of Untrusted Data in Themekraft Buddyforms

usage: python exploit.py "/wp-admin/admin-ajax.php" 'bash -c "ba...

9.8CVSS7.4AI score0.8833EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/02/04 1:34 p.m.664 views

Exploit for CVE-2024-2961

Buddyforms 2.7.7 CNEXT RCE Abusing CVE-2024-2961 and CVE-2023...

9.8CVSS7.5AI score0.8833EPSS
Exploits18
SUSE Linux
SUSE Linux
added 2025/02/03 8:53 a.m.11 views

Security update for glibc

This update for glibc fixes the following issues: Fixed security issues: CVE-2024-33602: Use timet for return type of addgetnetgrentX bsc1223425 CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache bsc1223423 CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response...

8.2CVSS8AI score0.8833EPSS
Exploits16References24
OpenVAS
OpenVAS
added 2025/01/31 12:0 a.m.20 views

Fedora: Security Advisory (FEDORA-2025-c17ef0f176)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.8833EPSS
Exploits17References9
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.21 views

Security Bulletin: Vulnerability in GNU glibc affects IBM Integrated Analytics System [CVE-2024-2961]

Summary Redhat provided GNU glibc is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2024-2961 Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: GNU C Library could allow a remote attacker to execute arbitrary code on the system,...

7.3CVSS7.8AI score0.8833EPSS
Exploits16Affected Software1
phpMyAdmin
phpMyAdmin
added 2025/01/21 12:0 a.m.56 views

glibc/iconv Vulnerability (CVE-2024-2961)

PMASA-2025-3 Announcement-ID: PMASA-2025-3 Date: 2025-01-21 Summary glibc/iconv Vulnerability CVE-2024-2961 Description There was a vulnerability found in glibc/iconv that could potentially affect phpMyAdmin under specific circumstances. By default, phpMyAdmin is not vulnerable, but since we use...

7.3CVSS6.8AI score0.8833EPSS
Exploits16Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/04 2:52 p.m.22 views

Security Bulletin: IBM DataPower Gateway potentially vulnerable to RCE vulnerability

Summary IBM DataPower Gateway does not support the affected character-set. Out of an abundance of caution, IBM has applied the remediation for this CVE. Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: GNU C Library could allow a remote attacker to execute arbitrary code on the system, caus...

7.3CVSS7.8AI score0.8833EPSS
Exploits16Affected Software1
Rows per page
Query Builder