EUVD-2024-37378

Malicious code in bioql PyPI...

The vulnerability of the Auto-attach Option Handler component of the JetBrains YouTrack software for managing projects and tasks allows a hacker to enable the automatic attachment of this option to work processes.

The vulnerability of the Auto-attach Option Handler component in the JetBrains YouTrack project and task management software is related to the absence of authentication. Exploiting this vulnerability allows a malicious actor to enable the automatic attachment option to the workflow processes...

CVE-2024-38506

In JetBrains YouTrack before 2024.2.34646 user without appropriate permissions could enable the auto-attach option for workflows...

CVE-2024-38506

In JetBrains YouTrack before 2024.2.34646 user without appropriate permissions could enable the auto-attach option for workflows...

CVE-2024-38506

In JetBrains YouTrack before 2024.2.34646 user without appropriate permissions could enable the auto-attach option for workflows...

CVE-2024-38506

JetBrains YouTrack (affected: versions before 2024.2.34646) contains a vulnerability where a user without appropriate permissions could enable the auto-attach option for workflows. The issue is documented in CVE-2024-38506; the available sources describe the affected product/version and the misco...

CVE-2024-38506

In JetBrains YouTrack before 2024.2.34646 user without appropriate permissions could enable the auto-attach option for workflows...

The vulnerability of the Open vSwitch multi-level switch lies in the loss of significance of a whole number, allowing an attacker to execute any code in the target system.

The vulnerability of the Open vSwitch multi-level switch lies in the loss of significance of a whole number during the Auto Attach TLV process. Exploiting this vulnerability allows an attacker to send specially crafted LLDP messages to the vulnerable system, causing a full number of significant...

The vulnerability of the Open vSwitch multi-level switch software, related to the loss of the significance of a whole number, allows an attacker to execute arbitrary code in the target system.

The vulnerability of the Open vSwitch multi-level switch lies in the loss of significance of a whole number during the analysis of Auto Attach TLV. Exploiting this vulnerability allows an attacker to send specially crafted LLDP messages to the vulnerable system, causing a full number of significa...

PT-2023-1101 · Unknown +6 · Openvswitch +6

Name of the Vulnerable Software and Affected Versions: OpenvSwitch affected versions not specified Description: The issue is related to an out-of-bounds read in Organization Specific TLV found in OpenvSwitch. It can be exploited by sending specially crafted LLDP messages to the vulnerable system,...