Lucene search
+L

12 matches found

Wolfi
Wolfi
added 2025/03/21 4:43 p.m.22 views

CVE-2024-29180 vulnerabilities

Vulnerabilities for packages: argo-workflows, kubeflow-katib...

7.5CVSS7.3AI score0.01209EPSS
Exploits1
Chainguard
Chainguard
added 2025/03/21 4:12 p.m.21 views

CVE-2024-29180 vulnerabilities

Vulnerabilities for packages: kubeflow-katib, argo-workflows...

7.5CVSS7AI score0.01209EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-29180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prior to versions 7.1.0, 6.1.2, and 5.3.4, the webpack-dev-middleware development middleware for devpack does not validate the supplied URL address sufficiently...

7.4CVSS6.4AI score0.01209EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/07/10 3:10 p.m.34 views

Important: Red Hat Security Advisory: Red Hat Data Grid 8.5.0 security update

An update for Red Hat Data Grid 8 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

7.5CVSS6.6AI score0.0138EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2024/06/27 11:23 a.m.68 views

Critical: Red Hat Security Advisory: OpenShift Container Platform 4.16.0 bug fix and security update

Red Hat OpenShift Container Platform release 4.16.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.16. Red Hat Product Security has rated this update as having a...

9.8CVSS7.1AI score0.93305EPSS
Exploits6References1337
RedHat Linux
RedHat Linux
added 2024/06/17 12:43 a.m.46 views

Important: Red Hat Security Advisory: Network Observability 1.6.0 for OpenShift

Network Observability 1.6 for Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.8CVSS7.2AI score0.01613EPSS
Exploits3References24
RedHat Linux
RedHat Linux
added 2024/05/10 7:36 p.m.47 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.10.5 security update

An update is now available for Red Hat OpenShift GitOps v1.10.5 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS7.2AI score0.01209EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2024/05/10 7:16 p.m.52 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.2 security update

An update is now available for Red Hat OpenShift GitOps v1.12.2 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS6.7AI score0.01209EPSS
Exploits1References14
RedHat Linux
RedHat Linux
added 2024/05/10 7:6 p.m.46 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.11.4 security update

An update is now available for Red Hat OpenShift GitOps v1.11.4 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS7.2AI score0.01209EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2024/03/21 9:43 p.m.49 views

CVE-2024-29180

A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer's machine. The lack of normalization before calling...

7.4CVSS7.2AI score0.01209EPSS
Exploits1References4
CVE
CVE
added 2024/03/21 4:47 p.m.340 views

CVE-2024-29180

CVE-2024-29180 affects the webpack-dev-middleware development middleware used with webpack-dev-server/webpack-dev-middleware. The vulnerability arises from improper URL unescaping/normalization before parsing the requested file, allowing path traversal via sequences like %2e and %2f to access loc...

7.5CVSS7.2AI score0.01209EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2024/03/21 4:47 p.m.35 views

CVE-2024-29180 webpack-dev-middleware Path Traversal vulnerability

Prior to versions 7.1.0, 6.1.2, and 5.3.4, the webpack-dev-middleware development middleware for devpack does not validate the supplied URL address sufficiently before returning the local file. It is possible to access any file on the developer's machine. The middleware can either work with the...

7.4CVSS7.3AI score0.01209EPSS
Exploits1References9
Rows per page
Query Builder