CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedHat Linux•added 2025/05/14 4:5 p.m.•3 views

narayana: deadlock via multiple join requests sent to LRA Coordinator

A security issue was discovered in the LRA Coordinator component of Narayana. When Cancel is called in LRA, an execution time of approximately 2 seconds occurs. If Join is called with the same LRA ID within that timeframe, the application may crash or hang indefinitely, leading to a denial of...

5.9CVSS5.9AI score0.00173EPSS

Exploits0References5

RedHat Linux•added 2025/03/27 4:47 p.m.•15 views

narayana: deadlock via multiple join requests sent to LRA Coordinator

5.9CVSS5.9AI score0.00173EPSS

Exploits0References5

RedHat Linux•added 2025/03/27 4:42 p.m.•2 views

narayana: deadlock via multiple join requests sent to LRA Coordinator

5.9CVSS5.9AI score0.00173EPSS

Exploits0References5

OSV•added 2025/01/02 9:31 p.m.•10 views

GHSA-QQ9F-Q439-2574 Narayana deadlock via multiple join requests sent to LRA Coordinator

5.9CVSS5.7AI score0.00173EPSS

Exploits0References9

Github Security Blog•added 2025/01/02 9:31 p.m.•28 views

Narayana deadlock via multiple join requests sent to LRA Coordinator

5.9CVSS7.2AI score0.00173EPSS

Exploits0References9Affected Software1

NVD•added 2025/01/02 9:15 p.m.•12 views

CVE-2024-8447

5.9CVSS0.00173EPSS

Exploits0References6

OSV•added 2025/01/02 9:15 p.m.•3 views

CVE-2024-8447

5.9CVSS5.9AI score0.00173EPSS

Exploits0References6

CVE•added 2025/01/02 8:19 p.m.•158 views

CVE-2024-8447

CVE-2024-8447 describes a deadlock in Narayana’s LRA Coordinator: when Cancel is followed by a Join on the same LRA within ~2 seconds, the application may crash or hang, causing a denial of service. The issue is addressed in Red Hat advisories RHSA-2025:3357/3358 for JBoss EAP XP 5.0 and EAP 8.x,...

5.9CVSS5.8AI score0.00173EPSS

Exploits0References6

Cvelist•added 2025/01/02 8:19 p.m.•13 views

CVE-2024-8447 Narayana: deadlock via multiple join requests sent to lra coordinator

5.9CVSS0.00173EPSS

Exploits0References6

Vulnrichment•added 2025/01/02 8:19 p.m.•9 views

CVE-2024-8447 Narayana: deadlock via multiple join requests sent to lra coordinator

5.9CVSS6.9AI score0.00173EPSS

Exploits0References6

Positive Technologies•added 2025/01/02 12:0 a.m.•4 views

PT-2025-3700 · Narayana · Narayana

Name of the Vulnerable Software and Affected Versions: Narayana affected versions not specified Description: A security issue was discovered in the LRA Coordinator component of Narayana. When Cancel is called in LRA, an execution time of approximately 2 seconds occurs. If Join is called with the...

5.9CVSS5.6AI score0.00173EPSS

Exploits0References14

CNNVD•added 2025/01/02 12:0 a.m.•2 views

Narayana 安全漏洞

Narayana is an open source transaction toolkit from JBossTM. A security vulnerability exists in Narayana that stems from the LRA Coordinator component causing the application to crash or hang indefinitely, resulting in a denial of service...

5.9CVSS5.7AI score0.00173EPSS

Exploits0References4

RedHat Linux•added 2021/08/11 6:21 p.m.•157 views

Moderate: Red Hat Security Advisory: Red Hat Fuse 7.9.0 release and security update

A minor version update from 7.8 to 7.9 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring...

9.8CVSS7.1AI score0.94469EPSS

Exploits79References45

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by