Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.2 views

Siemens SCALANCE and RUGGEDCOM Devices Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CVE-2024-47742)

firmwareloader: Block path traversal Most firmware names are hardcoded strings, or are constructed from fairly constrained format strings where the dynamic parts are just some hex numbers or such. However, there are a couple codepaths in the kernel where firmware file names contain string...

7.8CVSS6.9AI score0.00286EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-47742

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - firmwareloader: Block path traversal Most firmware names are hardcoded strings, or are constructed from fairly constrained format strings where the dynamic part...

7.8CVSS7.1AI score0.00286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.13 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-47742)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47742 advisory. - In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Block path traversal Mos...

7.8CVSS6.2AI score0.00286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/05 12:0 a.m.33 views

Amazon Linux AMI : kernel (ALAS-2025-1957)

The version of kernel installed on the remote host is prior to 4.14.355-195.582. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1957 advisory. In the Linux kernel, the following vulnerability has been resolved: net/ipv6: avoid possible UAF in...

7.8CVSS6.6AI score0.00286EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2025/02/04 12:0 a.m.23 views

Amazon Linux 2 : kernel (ALAS-2025-2745)

The version of kernel installed on the remote host is prior to 4.14.355-275.582. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2745 advisory. In the Linux kernel, the following vulnerability has been resolved: net/ipv6: avoid possible UAF in...

7.8CVSS6.5AI score0.00286EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2025/01/24 12:0 a.m.28 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-090 (ALASKERNEL-5.4-2025-090)

The version of kernel installed on the remote host is prior to 5.4.286-201.385. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-090 advisory. In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity...

9.1CVSS7.2AI score0.01367EPSS
Exploits2References163
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.14 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-47742)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47742 advisory. - In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Block path traversal Mos...

7.8CVSS6.2AI score0.00286EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/12/11 7:24 a.m.13 views

CVE-2024-47742 affecting package kernel for versions less than 5.15.173.1-1

CVE-2024-47742 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...

7.8CVSS6.8AI score0.00286EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/11/08 9:38 p.m.14 views

CVE-2024-47742 affecting package kernel for versions less than 6.6.56.1-5

CVE-2024-47742 affecting package kernel for versions less than 6.6.56.1-5. An upgraded version of the package is available that resolves this issue...

7.8CVSS6.8AI score0.00286EPSS
Exploits0
OSV
OSV
added 2024/10/21 1:15 p.m.3 views

AZL-51027 CVE-2024-47742 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Block path traversal Most firmware names are hardcoded strings, or are constructed from fairly constrained format strings where the dynamic parts are just some hex numbers or such. However, there are a couple...

7.8CVSS6.6AI score0.00286EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/10/21 1:15 p.m.11 views

CVE-2024-47742

In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Block path traversal Most firmware names are hardcoded strings, or are constructed from fairly constrained format strings where the dynamic parts are just some hex numbers or such. However, there are a couple...

7.8CVSS6.6AI score0.00286EPSS
Exploits0References42
OSV
OSV
added 2024/10/21 12:14 p.m.19 views

CVE-2024-47742 firmware_loader: Block path traversal

In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Block path traversal Most firmware names are hardcoded strings, or are constructed from fairly constrained format strings where the dynamic parts are just some hex numbers or such. However, there are a couple...

7.8CVSS6.3AI score0.00286EPSS
Exploits0References14
Rows per page
Query Builder