Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2024-36124

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because...

5.3CVSS6.9AI score0.00487EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/30 3:11 p.m.12 views

Security Bulletin: The B2B API of IBM Sterling B2B Integrator is Vulnerable to Denial of Service due to Snappy (CVE-2024-36124)

Summary IBM Sterling B2B Integrator has addressed the denial of service vulnerablity from Snappy Vulnerability Details CVEID:CVE-2024-36124 DESCRIPTION: Snappy is vulnerable to a denial of service, caused by an out-of-bounds read flaw when uncompressing data. By sending a specially crafted reques...

5.3CVSS5.4AI score0.00487EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2024/06/04 5:38 p.m.7 views

ai.chronon:online_2.11 (>=0.0.25 <=revert-391-thread-0.0.24), ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +2845 more potentially affected by CVE-2024-36124 via org.iq80.snappy:snappy (>=0.1 <=0.4)

org.iq80.snappy:snappy MAVEN version =0.1, =0.0.25, =0.0.86, =0.0.1, =0.0.1, =0.2.7, =1.0.1, =1.1.0, =1.7.0, =1.7.0, =1.0.0, =0.0.12, =1.0.0, =1.0.0, =1.0.0, =1.4.0 and more Source cves: CVE-2024-36124 Source advisory: OSV:GHSA-8WH2-6QHJ-H7J9...

5.3CVSS6.2AI score0.00487EPSS
Exploits0
NVD
NVD
added 2024/06/03 3:15 p.m.22 views

CVE-2024-36124

iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...

5.3CVSS5.2AI score0.00487EPSS
Exploits0References1
Chainguard
Chainguard
added 2024/06/03 3:15 p.m.15 views

CVE-2024-36124 vulnerabilities

Vulnerabilities for packages: apache-nifi...

5.3CVSS5.4AI score0.00487EPSS
Exploits0
Wolfi
Wolfi
added 2024/06/03 3:15 p.m.21 views

CVE-2024-36124 vulnerabilities

Vulnerabilities for packages: apache-nifi...

5.3CVSS7.1AI score0.00487EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/06/03 3:15 p.m.19 views

CVE-2024-36124

iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...

5.3CVSS6.8AI score0.00487EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/03 2:25 p.m.33 views

CVE-2024-36124 iq80 Snappy has an out-of-bounds read when uncompressing data, leading to JVM crash

iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...

5.3CVSS5.2AI score0.00487EPSS
Exploits0References1
OSV
OSV
added 2024/06/03 2:25 p.m.6 views

CVE-2024-36124 iq80 Snappy has an out-of-bounds read when uncompressing data, leading to JVM crash

iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...

5.3CVSS5.7AI score0.00487EPSS
Exploits0References3
Rows per page
Query Builder