Lucene search
K

216 matches found

OSV
OSV
added 2025/02/12 2:15 p.m.3 views

DEBIAN-CVE-2024-57952

In the Linux kernel, the following vulnerability has been resolved: Revert "libfs: fix infinite directory reads for offset dir" The current directory offset allocator based on mtreealloccyclic stores the next offset value to return in octx-nextoffset. This mechanism typically returns values that...

5.5CVSS5.7AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2025/02/12 2:15 p.m.5 views

UBUNTU-CVE-2024-57952

In the Linux kernel, the following vulnerability has been resolved: Revert "libfs: fix infinite directory reads for offset dir" The current directory offset allocator based on mtreealloccyclic stores the next offset value to return in octx-nextoffset. This mechanism typically returns values that...

5.5CVSS6.2AI score0.00203EPSS
Exploits0References16
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel. An attacker exploiting the vulnerability could cause existing entries to disappear from the readdir output...

5.5CVSS6.4AI score0.00203EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: jfs: fixed an array-index-out-of-bounds issue in jfsreaddir. The stbl might contain some invalid values. A check was added to return an error code in such cases...

7.8CVSS6.3AI score0.0023EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/22 3:48 a.m.3 views

SUSE CVE-2024-57940

In the Linux kernel, the following vulnerability has been resolved: exfat: fix the infinite loop in exfatreaddir If the file system is corrupted so that a cluster is linked to itself in the cluster chain, and there is an unused directory entry in the cluster, 'dentry' will not be incremented,...

4.1CVSS7.6AI score0.00218EPSS
Exploits0References14
OSV
OSV
added 2025/01/21 1:15 p.m.3 views

UBUNTU-CVE-2024-57940

In the Linux kernel, the following vulnerability has been resolved: exfat: fix the infinite loop in exfatreaddir If the file system is corrupted so that a cluster is linked to itself in the cluster chain, and there is an unused directory entry in the cluster, 'dentry' will not be incremented,...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References34
SUSE CVE
SUSE CVE
added 2025/01/10 12:22 a.m.4 views

SUSE CVE-2024-56596

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Added a check to return error code in that case...

5.5CVSS7.7AI score0.0023EPSS
Exploits0References16
OSV
OSV
added 2024/12/27 3:15 p.m.2 views

DEBIAN-CVE-2024-56596

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Added a check to return error code in that case...

7.8CVSS5.7AI score0.0023EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 3:15 p.m.4 views

UBUNTU-CVE-2024-56596

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Added a check to return error code in that case...

7.8CVSS6.2AI score0.0023EPSS
Exploits0References56
CVE
CVE
added 2024/12/27 2:51 p.m.152 views

CVE-2024-56596

CVE-2024-56596 relates to the Linux kernel, in the JFS filesystem implementation. The issue is an array-index-out-of-bounds in jfs_readdir, caused by potential invalid values in the directory index table (stbl). The fix adds a validation check to detect invalid stbl values and return an error cod...

7.8CVSS6.6AI score0.0023EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/27 2:51 p.m.2 views

CVE-2024-56596 jfs: fix array-index-out-of-bounds in jfs_readdir

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Added a check to return error code in that case...

7.5AI score0.0023EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/12/27 2:51 p.m.14 views

CVE-2024-56596 jfs: fix array-index-out-of-bounds in jfs_readdir

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Added a check to return error code in that case...

0.0023EPSS
Exploits0References7
OSV
OSV
added 2024/12/27 2:51 p.m.11 views

CVE-2024-56596 jfs: fix array-index-out-of-bounds in jfs_readdir

In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Added a check to return error code in that case...

7.8CVSS6.2AI score0.0023EPSS
Exploits0References12
OSV
OSV
added 2024/12/05 8:15 p.m.4 views

CVE-2024-10933

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems...

5.5CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2024/12/05 8:15 p.m.27 views

CVE-2024-10933

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems...

5.5CVSS0.00271EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/05 8:6 p.m.24 views

CVE-2024-10933 OpenBSD readdir directory traversal

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems...

5CVSS0.00271EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/05 8:6 p.m.15 views

CVE-2024-10933 OpenBSD readdir directory traversal

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems...

5CVSS7.2AI score0.00271EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.10 views

PT-2024-16649 · Openbsd · Openbsd

Name of the Vulnerable Software and Affected Versions: OpenBSD versions 7.4 through 7.5 before errata 009 and 022 Description: The issue arises from improper validation of readdir names, allowing unexpected directory traversal on untrusted file systems when a '/' is encountered. This can be...

5CVSS7.2AI score0.00271EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/12/05 12:0 a.m.4 views

OpenBSD 安全漏洞

OpenBSD is a cross-platform, BSD-based UNIX-like operating system from the Canadian OpenBSD organization. A security vulnerability exists in OpenBSD versions prior to OpenBSD 7.5 errata 009 and OpenBSD versions prior to OpenBSD 7.4 errata 022, which stems from improper validation of the readdir...

5.5CVSS6.7AI score0.00271EPSS
Exploits0References2
0day.today
0day.today
added 2024/10/11 12:0 a.m.214 views

ABB Cylon Aspect 3.08.01 persistenceManagerAjax.php Directory Traversal Vulnerability

ABB Cylon Aspect version 3.08.01 has a directory traversal vulnerability that can be exploited by an unauthenticated attacker to list the contents of arbitrary directories without reading file contents, leading to information disclosure of directory structures and filenames. This may expose...

7.1AI score
Exploits0
Rows per page
Query Builder