Lucene search
+L

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/09/19 3:48 p.m.20 views

Security Bulletin:IBM Asset Data Dictionary Component uses aircompressor-0.21.jar which is vulnerable to CVE-2024-36114

Summary IBM Asset Data Dictionary Component uses aircompressor-0.21.jar which is vulnerable to CVE-2024-36114. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-36114 DESCRIPTION: airlift aircompressor could allow a local attacker...

8.6CVSS8.1AI score0.00504EPSS
Exploits0Affected Software1
Chainguard
Chainguard
added 2024/05/29 9:15 p.m.27 views

CVE-2024-36114 vulnerabilities

Vulnerabilities for packages: spark, trino, apache-nifi, druid...

8.6CVSS7.4AI score0.00504EPSS
Exploits0
Wolfi
Wolfi
added 2024/05/29 9:15 p.m.24 views

CVE-2024-36114 vulnerabilities

Vulnerabilities for packages: apache-nifi, trino, spark, druid...

8.6CVSS7.4AI score0.00504EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/05/29 8:24 p.m.21 views

CVE-2024-36114 Decompressors can crash the JVM and leak memory content in Aircompressor

Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor LZ4, LZO, Snappy, Zstandard can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java proce...

8.6CVSS8.5AI score0.00504EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/29 8:24 p.m.50 views

CVE-2024-36114 Decompressors can crash the JVM and leak memory content in Aircompressor

Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor LZ4, LZO, Snappy, Zstandard can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java proce...

8.6CVSS8.6AI score0.00504EPSS
Exploits0References5
OSV
OSV
added 2024/05/29 8:24 p.m.21 views

CVE-2024-36114 Decompressors can crash the JVM and leak memory content in Aircompressor

Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor LZ4, LZO, Snappy, Zstandard can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java proce...

8.6CVSS7.1AI score0.00504EPSS
Exploits0References7
Rows per page
Query Builder