5128 matches found
CVE-2024-8912
An HTTP Request Smuggling vulnerability in Looker allowed an unauthorized attacker to capture HTTP responses destined for legitimate users. There are two Looker versions that are hosted by Looker: Looker Google Cloud core was found to be vulnerable. This issue has already been mitigated and our...
SUSE CVE-2024-9781
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file...
Wireshark Security Update (wnpa-sec-2024-13) - Mac OS X
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
CVE-2024-9781
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file...
CVE-2024-9780
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file...
CVE-2024-9780
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file...
CVE-2024-9780
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file...
UBUNTU-CVE-2024-9781
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file...
CVE-2024-9781 Improper Handling of Missing Values in Wireshark
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file...
CVE-2024-9781
CVE-2024-9781 affects Wireshark: AppleTalk and RELOAD Framing dissector crashes in Wireshark 4.4.0 and 4.2.0–4.2.7, enabling denial of service via packet injection or crafted capture files. Remediation: upgrade to Wireshark 4.2.8 or later (e.g., Fedora 40 advisory FEDORA-2024-1949806a59 and relat...
CVE-2024-9781 Improper Handling of Missing Values in Wireshark
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file...
CVE-2024-9781 Improper Handling of Missing Values in Wireshark
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file...
CVE-2024-9780
CVE-2024-9780 affects Wireshark 4.4.0 (ITS dissector crash). The vulnerability allows denial of service via packet injection or crafted capture files, due to a crash in the ITS dissector. Several connected advisories note multiple vulnerabilities in Wireshark 4.4.x; some sources indicate fixes/up...
CVE-2024-9780
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file...
CVE-2024-9780 Missing Initialization of a Variable in Wireshark
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file...
CVE-2024-46041
IoT Haat Smart Plug IH-IN-16A-S v5.16.1 is vulnerable to Authentication Bypass by Capture-replay...
CVE-2024-46041
IoT Haat Smart Plug IH-IN-16A-S v5.16.1 is vulnerable to Authentication Bypass by Capture-replay...
CVE-2024-46041
IoT Haat Smart Plug IH-IN-16A-S v5.16.1 is affected by CVE-2024-46041: an Authentication Bypass via capture-replay during Provisioning (Access Point pairing). Public sources (NVD/Red Hat/CNNVD) confirm the product and version, describing an authentication-token replay attack that can bypass login...
CVE-2024-46041
IoT Haat Smart Plug IH-IN-16A-S v5.16.1 is vulnerable to Authentication Bypass by Capture-replay...
Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability
Apple has released iOS and iPadOS updates to address two security issues, one of which could have allowed a user's passwords to be read out aloud by its VoiceOver assistive technology. The vulnerability, tracked as CVE-2024-44204, has been described as a logic problem in the new Passwords app...