15 matches found
Azure Linux 3.0 Security Update: python-tensorboard (CVE-2024-43788)
The version of python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43788 advisory. - Webpack is a module bundler. Its main purpose is to bundle JavaScript files for usage in a...
Security Bulletin: Vulnerability in Webpack and Rspack affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.
Summary Potential vulnerability in Webpack and Rspack has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information...
Linux Distros Unpatched Vulnerability : CVE-2024-43788
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Webpack is a module bundler. Its main purpose is to bundle JavaScript files for usage in a browser, yet it is also capable of transforming, bundling, or packagi...
Important: Red Hat Security Advisory: Red Hat Data Grid 8.5.2 security update
An update for Red Hat Data Grid 8 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
Security Bulletin: IBM Event Processing susceptible improper validation
Summary IBM Event Processing vulnerable to cross-site scripting, caused by improper validation CVE-2024-43788 Vulnerability Details CVEID:CVE-2024-43788 DESCRIPTION: Webpack and Rspack are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote...
SUSE SLED15: pgadmin4 / pgadmin4-cloud / pgadmin4-desktop / pgadmin4-doc / etc (SUSE-SU-2024:3771-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3771-1 advisory. - CVE-2024-38355: Fixed socket.io: unhandled 'error' event bsc1226967 - CVE-2024-38998: Fixed...
openSUSE Security Advisory (SUSE-SU-2024:3771-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:3771-1 Security update for pgadmin4
This update for pgadmin4 fixes the following issues: - CVE-2024-38355: Fixed socket.io: unhandled 'error' event bsc1226967 - CVE-2024-38998: Fixed requirejs: prototype pollution via function config bsc1227248 - CVE-2024-38999: Fixed requirejs: prototype pollution via function s.contexts..configur...
CVE-2024-43788 affecting package python-tensorboard for versions less than 2.16.2-3
CVE-2024-43788 affecting package python-tensorboard for versions less than 2.16.2-3. A patched version of the package is available...
FreeBSD : forgejo -- multiple vulnerabilities (a5e13973-6c75-11ef-858b-23eeba13701a)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a5e13973-6c75-11ef-858b-23eeba13701a advisory. - Webpack is a module bundler. Its main purpose is to bundle JavaScript files for usage in a browser, y...
forgejo -- multiple vulnerabilities
Problem Description: Replace v-html with v-text in search inputbox Upgrade webpack to v5.94.0 as a precaution to mitigate CVE-2024-43788, although we were not yet able to confirm that this can be exploited in Forgejo...
-react-file-list-components (=1.1.1), 00ricardo-utils (>=2.1.1 <=2.1.12) +33449 more potentially affected by CVE-2024-43788 +2 more via webpack (>=5.0.0-alpha.14 <=5.93.0)
webpack NPM version =5.0.0-alpha.14, =2.1.1, =1.0.0, =0.1.0, =1.0.0, =1.0.0, =1.0.0, =0.1.0, =0.1.6 - 0beny1s =1.1.6 - 0scarclassa =1.0.1 - 0scarclassb =1.0.1 - 0scarclassc =1.0.1 - 0scarclassd =1.0.1 and more Source cves: CVE-2024-43788, CVE-2024-45389, CVE-2024-45812 Source advisory:...
CVE-2024-43788 vulnerabilities
Vulnerabilities for packages: argo-workflows, grafana-fips, kubeflow-katib, grafana, grafana-11.0...
CVE-2024-43788 vulnerabilities
Vulnerabilities for packages: kubeflow-katib, argo-workflows...
CVE-2024-43788
creationtimestamp| type| source ---|---|--- 2024-08-27 12:56:46+00:00| published-proof-of-concept| https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986 2024-08-27 19:54:07+00:00| seen| https://t.me/cvedetector/4259 2025-01-09 18:19:34+00:00| published-proof-of-concept|...