Lucene search
+L

8 matches found

nessus
nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: libarchive (CVE-2024-37407)

The version of libarchive installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-37407 advisory. - Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and...

9.1CVSS5.6AI score0.00971EPSS
Exploits1References2
mscve
mscve
added 2024/09/11 7:0 a.m.4 views

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

...

9.1CVSS7AI score0.00971EPSS
Exploits1
nvd
nvd
added 2024/06/08 1:15 p.m.21 views

CVE-2024-37407

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurpcentraldirectory in archivereadsupportformatzip.c...

9.1CVSS0.00971EPSS
Exploits1References3
osv
osv
added 2024/06/08 1:15 p.m.8 views

AZL-42471 CVE-2024-37407 affecting package libarchive for versions less than 3.7.1-2

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurpcentraldirectory in archivereadsupportformatzip.c...

9.1CVSS7.3AI score0.00971EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2024/06/08 12:0 a.m.7 views

PT-2024-4147 · Unknown +1 · Libarchive +1

Name of the Vulnerable Software and Affected Versions: Libarchive versions prior to 3.7.4 Description: The issue is related to a buffer overflow vulnerability when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in the slurp central directory function in archive read...

9.1CVSS6.2AI score0.87896EPSS
Exploits1References25
cvelist
cvelist
added 2024/06/08 12:0 a.m.36 views

CVE-2024-37407

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurpcentraldirectory in archivereadsupportformatzip.c...

0.00971EPSS
Exploits1References3
debiancve
debiancve
added 2024/06/08 12:0 a.m.26 views

CVE-2024-37407

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurpcentraldirectory in archivereadsupportformatzip.c...

9.1CVSS7.3AI score0.00971EPSS
Exploits1
cve
cve
added 2024/06/08 12:0 a.m.331 views

CVE-2024-37407

CVE-2024-37407 affects the libarchive library (before 3.7.4). The vulnerability occurs when processing a ZIP archive that contains an empty-name file with mac-ext enabled, in slurp_central_directory of archive_read_support_format_zip.c, which can cause name out-of-bounds access. Affected versions...

9.1CVSS6.5AI score0.00971EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder