CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2024-39844

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK. CVE-2024-39844 Note that Nessus relies on the presence of the package as reported by...

9.8CVSS9.2AI score0.37139EPSS

Exploits0References2

Gentoo Linux•added 2024/09/24 12:0 a.m.•8 views

ZNC: Remote Code Execution

Background ZNC is an advanced IRC bouncer. Description ZNC's modtcl could allow for remote code execution via a KICK. Impact A vulnerable ZNC with the modtcl module loaded could be exploited for remote code execution. Workaround Unload the modtcl module. Resolution All ZNC users should upgrade to...

9.8CVSS7.7AI score0.37139EPSS

Exploits0

Tenable Nessus•added 2024/07/29 12:0 a.m.•9 views

FreeBSD : znc -- remote code execution vulnerability (8057d198-4d26-11ef-8e64-641c67a117d8)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 8057d198-4d26-11ef-8e64-641c67a117d8 advisory. Mitre reports: In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK. Tenable has...

9.8CVSS6.4AI score0.37139EPSS

Exploits0References4

OSV•added 2024/07/17 12:6 p.m.•9 views

OPENSUSE-SU-2024:0203-1 Security update for znc

This update for znc fixes the following issues: Update to 1.9.1 boo1227393, CVE-2024-39844 This is a security release to fix CVE-2024-39844: remote code execution vulnerability in modtcl. To mitigate this for existing installations, simply unload the modtcl module for every user, if it's loaded...

9.8CVSS9.3AI score0.37139EPSS

Exploits0References3

OpenVAS•added 2024/07/08 12:0 a.m.•11 views

ZNC < 1.9.1 RCE Vulnerability

ZNC is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:znc:znc"; ifdescriptio...

9.8CVSS7.7AI score0.37139EPSS

Exploits0References1

OSV•added 2024/07/05 4:28 p.m.•4 views

MGASA-2024-0257 Updated znc packages fix security vulnerability

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK. CVE-2024-39844...

9.8CVSS9.8AI score0.37139EPSS

Exploits0References3

Mageia•added 2024/07/05 4:28 p.m.•23 views

Updated znc packages fix security vulnerability

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK. CVE-2024-39844...

9.8CVSS7.8AI score0.37139EPSS

Exploits0References2

SUSE CVE•added 2024/07/05 3:23 a.m.•1 views

SUSE CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

9.8CVSS8.2AI score0.37139EPSS

Exploits0References4

Debian•added 2024/07/03 8:35 p.m.•10 views

[SECURITY] [DSA 5725-1] znc security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5725-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 03, 2024 https://www.debian.org/security/faq -...

9.8CVSS7.2AI score0.37139EPSS

Exploits0

NVD•added 2024/07/03 5:15 p.m.•18 views

CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

9.8CVSS0.37139EPSS

Exploits0References5

OSV•added 2024/07/03 5:15 p.m.•11 views

CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

9.8CVSS7.6AI score

Exploits0References5

OSV•added 2024/07/03 5:15 p.m.•0 views

UBUNTU-CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

9.8CVSS6.4AI score0.37139EPSS

Exploits0References8

UbuntuCve•added 2024/07/03 5:15 p.m.•11 views

CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

9.8CVSS6.4AI score0.37139EPSS

Exploits0References7

Cvelist•added 2024/07/03 12:0 a.m.•201 views

CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

0.37139EPSS

Exploits0References5

Debian CVE•added 2024/07/03 12:0 a.m.•9 views

CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

9.8CVSS6.2AI score0.37139EPSS

Exploits0

Positive Technologies•added 2024/07/03 12:0 a.m.•3 views

PT-2024-28697 · Znc +2 · Znc +2

Name of the Vulnerable Software and Affected Versions: ZNC versions prior to 1.9.1 Description: The issue allows for remote code execution in the modtcl module of ZNC, which can be triggered through a prepared kick message. Recommendations: For versions prior to 1.9.1, update to version 1.9.1 or...

9.8CVSS7.8AI score0.37139EPSS

Exploits0References31

CVE•added 2024/07/03 12:0 a.m.•63 views

CVE-2024-39844

CVE-2024-39844 affects ZNC prior to 1.9.1. The vulnerability is a remote code execution flaw in the modtcl module that can be triggered by a KICK event, enabling an attacker to execute code remotely over the network. Connected advisories and Nessus/NASL records consistently describe this issue an...

9.8CVSS7.5AI score0.37139EPSS

Exploits0References5

CNNVD•added 2024/07/03 12:0 a.m.•0 views

ZNC Security Vulnerabilities

ZNC is ZNC's open source set of IRC proxies that allow users to log in to IRC servers from their workstations. A security vulnerability exists in ZNC versions prior to 1.9.1, which stems from a remote code execution that can be performed in modtcl via KICK...

9.8CVSS7.9AI score0.37139EPSS

Exploits0References7