Lucene search
+L

11 matches found

GithubExploit
GithubExploit
added 2025/10/12 12:56 p.m.267 views

Exploit for CVE-2024-27304

CVE-2024-27304-PoC references - DEF CON 32 - SQL Injectio...

9.8CVSS8.6AI score0.01109EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/27 7:46 a.m.42 views

Security Bulletin: IBM Instana Observability is vulnerable to SQL injection due to PostgreSQL driver and toolkit for Go, known as pgx.

Summary PostgreSQL driver and toolkit for Go, known as pgx is used by IBM Instana Observability Using third-party datastore Operators as part of the postgres operator CVE-2024-27304. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2024-2730...

9.8CVSS9.9AI score0.01109EPSS
Exploits1Affected Software1
CBLMariner
CBLMariner
added 2024/03/21 8:9 a.m.45 views

CVE-2024-27304 affecting package telegraf for versions less than 1.28.5-5

CVE-2024-27304 affecting package telegraf for versions less than 1.28.5-5. A patched version of the package is available...

9.8CVSS9.6AI score0.01109EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/03/13 8:55 p.m.45 views

Moderate: Red Hat Security Advisory: ACS 4.3 enhancement and security update

Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes bug and security fixes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS6.8AI score0.01109EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2024/03/06 9:22 p.m.66 views

CVE-2024-27304

pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control. T...

8.1CVSS9.8AI score0.01109EPSS
Exploits1References3
Circl
Circl
added 2024/03/06 8:26 p.m.9 views

CVE-2024-27304

creationtimestamp| type| source ---|---|--- 2024-03-06 20:26:53+00:00| seen| https://t.me/ctinow/201763 2024-03-06 20:36:26+00:00| seen| https://t.me/ctinow/201784 2024-03-06 22:31:11+00:00| seen| https://t.me/ctinow/201857 2025-10-12 10:56:02+00:00| seen|...

9.8CVSS7.3AI score0.01109EPSS
Exploits1References6
Chainguard
Chainguard
added 2024/03/06 7:15 p.m.76 views

CVE-2024-27304 vulnerabilities

Vulnerabilities for packages: k3s, spicedb, trillian-fips, step, amass, argo-workflows-fips, argo-workflows, temporal-server-fips, trillian, step-ca, keda-fips, falcosidekick-fips, wavefront-collector-for-kubernetes, ferretdb, caddy-fips, temporal-server, caddy, kube-bench-fips, kine, kots, src,...

9.8CVSS8AI score0.01109EPSS
Exploits1
Wolfi
Wolfi
added 2024/03/06 7:15 p.m.351 views

CVE-2024-27304 vulnerabilities

Vulnerabilities for packages: step, trillian, amass, step-ca, k3s, kine, ferretdb, kube-bench, spicedb, temporal-server, caddy, kots, src, argo-workflows...

9.8CVSS8AI score0.01109EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2024/03/06 7:7 p.m.46 views

CVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow

pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control. T...

9.8CVSS7.8AI score0.01109EPSS
Exploits1References7
CVE
CVE
added 2024/03/06 7:7 p.m.407 views

CVE-2024-27304

CVE-2024-27304 affects pgx, a PostgreSQL driver/toolkit for Go. The vulnerability enables SQL injection when an attacker can cause a single query or Bind message to exceed 4 GB due to an integer overflow in message size calculation, which can cause the large message to be split into multiple mess...

9.8CVSS9.6AI score0.01109EPSS
Exploits1References7Affected Software2
OSV
OSV
added 2024/03/06 7:7 p.m.23 views

CVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow

pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control. T...

9.8CVSS9AI score0.01109EPSS
Exploits1References9
Rows per page
Query Builder