Lucene search
+L

13 matches found

nessus
nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-42460

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because there is a missing check for whether the leading bit of r and s is zero...

5.3CVSS6.7AI score0.00459EPSS
Exploits1References4
ibm
ibm
added 2025/02/26 6:46 p.m.17 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in Elliptic module

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of Elliptic module Vulnerability Details CVEID:CVE-2024-42461 DESCRIPTION: Node.js Elliptic module could allow a remote attacker to obtain sensitive information, caused by a flaw with BER-encoded signatures are allowed. By...

9.1CVSS6AI score0.00617EPSS
Exploits2Affected Software1
ibm
ibm
added 2025/02/10 2:33 p.m.27 views

Security Bulletin: IBM QRadar Deployment Intelligence app for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. IBM QRadar Deployment Intelligence app for IBM QRadar SIEM has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2024-42461 DESCRIPTION: Node.js...

9.1CVSS9.2AI score0.03273EPSS
Exploits6Affected Software1
redhat
redhat
added 2024/11/21 11:23 p.m.30 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.8.8 bug fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.8.8 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

9.1CVSS6.9AI score0.00617EPSS
Exploits2References2
redhat
redhat
added 2024/11/21 9:5 p.m.27 views

Important: Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.3.8 bug fixes and container updates

Multicluster Engine for Kubernetes 2.3.8 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.1CVSS6.9AI score0.00617EPSS
Exploits2References1
susecve
susecve
added 2024/10/30 4:6 a.m.7 views

SUSE CVE-2024-42460

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because there is a missing check for whether the leading bit of r and s is zero...

5.3CVSS9.4AI score0.00459EPSS
Exploits1References4
redhat
redhat
added 2024/10/28 9:28 p.m.25 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.5 bug fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.9.5 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

9.1CVSS6.9AI score0.00617EPSS
Exploits2References2
redhat
redhat
added 2024/09/17 7:47 p.m.33 views

Moderate: Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.5.7 security updates and bug fixes

Multicluster Engine for Kubernetes 2.5.7 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.1CVSS6.9AI score0.00617EPSS
Exploits2References5
nessus
nessus
added 2024/09/12 12:0 a.m.23 views

CBL Mariner 2.0 Security Update: reaper (CVE-2024-42460)

The version of reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42460 advisory. - In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because there is a missing...

5.3CVSS7.1AI score0.00459EPSS
Exploits1References2
cbl_mariner
cbl_mariner
added 2024/09/03 11:12 a.m.16 views

CVE-2024-42460 affecting package reaper for versions less than 3.1.1-11

CVE-2024-42460 affecting package reaper for versions less than 3.1.1-11. A patched version of the package is available...

5.3CVSS7AI score0.00459EPSS
Exploits1
redhat
redhat
added 2024/09/03 10:4 a.m.38 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.10 security update

Red Hat OpenShift Service Mesh Containers for 2.4.10 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.1CVSS6.7AI score0.01956EPSS
Exploits3References1
ibm
ibm
added 2024/08/08 10:34 a.m.28 views

Security Bulletin: IBM App Connect Enterprise Certified Container Dashboard operands that use COS S3 storage are vulnerable to loss of confidentiality [CVE-2024-42459] [CVE-2024-42460] [CVE-2024-42461]

Summary Node.js Elliptic module is used by IBM App Connect Enterprise Certified Container for encription and signature validation in communication between a Dashboard and COS S3 storage. IBM App Connect Enterprise Certified Container Dashboard operands that use COS S3 storage for storing bar file...

9.1CVSS5.3AI score0.00617EPSS
Exploits2Affected Software1
vulnersosv
vulnersosv
added 2024/08/02 9:31 a.m.8 views

0x-relayer-cat (>=0.0.2 <=0.0.10), 0xauth (>=0.0.2 <=0.0.6) +8792 more potentially affected by CVE-2024-42460 via elliptic (>=2.0.2 <=6.5.6)

elliptic NPM version =2.0.2, =0.0.2, =0.0.2, =1.0.6, =0.0.1-beta.1, =1.0.0, =0.1.0, =0.0.92, =0.1.3, =4.2.1, =6.2.1, =6.2.4 and more Source cves: CVE-2024-42460 Source advisory: OSV:GHSA-977X-G7H5-7QGW...

5.3CVSS6.7AI score0.00459EPSS
Exploits1
Rows per page
Query Builder