Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

358 matches found

CVE
CVEadded 2024/05/14 6:40 p.m.512 views

CVE-2024-32002

CVE-2024-32002 affects Git when cloning repositories with submodules, where a bug can cause files to be written into a .git directory instead of the submodule worktree. This can lead to a hook being executed during an ongoing clone, potentially enabling remote code execution without user inspecti...

9CVSS6.1AI score0.82951EPSS
Exploits32References8Affected Software1
Tenable Nessus
Tenable Nessusadded 2024/05/11 12:0 a.m.26 views

RHEL 7 : mercurial (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mercurial: arbitrary command execution in mercurial repo with a git submodule CVE-2017-17458 - The conver...

8.6AI score0.17249EPSS
Exploits0References3
Oracle linux
Oracle linuxadded 2024/04/02 12:0 a.m.36 views

ruby:3.1 security, bug fix, and enhancement update

ruby 3.1.4-143 - Upgrade to Ruby 3.1.4. Resolves: RHEL-5586 - Fix HTTP response splitting in CGI. Resolves: RHEL-5591 - Fix ReDos vulnerability in URI. Resolves: RHEL-28919 Resolves: RHEL-5612 - Fix ReDos vulnerability in Time. Resolves: RHEL-28920 - Make RDoc soft dependency in IRB. Resolves:...

8.8CVSS7.3AI score0.011EPSS
Exploits1
SUSE CVE
SUSE CVEadded 2024/02/29 3:36 a.m.2 views

SUSE CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

8.1CVSS7AI score0.01498EPSS
Exploits0References4
Friends Of PHP
Friends Of PHPadded 2024/02/27 8:26 p.m.64 views

Deserialization Gadget chain in Swift Mailer dependancy

Summary Symfony 1 has a gadget chain due to vulnerable Swift Mailer dependency that would enable an attacker to get remote code execution if a developer unserialize user input in his project. Details This vulnerability present no direct threat but is a vector that will enable remote code executio...

9CVSS5.7AI score0.05107EPSS
Exploits1Affected Software1
NVD
NVDadded 2024/02/27 7:4 p.m.17 views

CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS9.5AI score0.01498EPSS
Exploits0References2
OSV
OSVadded 2024/02/27 7:4 p.m.1 views

DEBIAN-CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS7.5AI score0.01498EPSS
Exploits0References1
OSV
OSVadded 2024/02/27 7:4 p.m.4 views

AZL-35447 CVE-2024-27099 affecting package azure-iot-sdk-c for versions less than 2022.01.21-3

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS6.9AI score0.01498EPSS
Exploits0References1
OSV
OSVadded 2024/02/27 7:4 p.m.2 views

UBUNTU-CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS5.8AI score0.01498EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2024/02/27 7:4 p.m.20 views

CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS6.9AI score0.01498EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/02/27 6:58 p.m.28 views

CVE-2024-27099 Azure IoT Platform Device SDK Double Free Vulnerability

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS6.7AI score0.01498EPSS
Exploits0References2
OSV
OSVadded 2024/02/27 6:58 p.m.22 views

CVE-2024-27099 Azure IoT Platform Device SDK Double Free Vulnerability

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS7.6AI score0.01498EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/02/27 6:58 p.m.22 views

CVE-2024-27099 Azure IoT Platform Device SDK Double Free Vulnerability

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS9.6AI score0.01498EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2024/02/27 6:58 p.m.15 views

CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS7.5AI score0.01498EPSS
Exploits0
Oracle linux
Oracle linuxadded 2024/02/20 12:0 a.m.21 views

edk2 security update

20220126gitbb1bba3d77-6.el89.3 - edk2-Bumped-openssl-submodule-version-to-cf317b2bb227.patch RHEL-7560 - Resolves: RHEL-7560 CVE-2023-3446 edk2: openssl: Excessive time spent checking DH keys and parameters rhel-8...

5.3CVSS7.4AI score0.01027EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2024/02/14 3:56 a.m.2 views

SUSE CVE-2024-25110

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

7.5CVSS8.2AI score0.00739EPSS
Exploits0References4
OSV
OSVadded 2024/02/12 8:15 p.m.3 views

AZL-34349 CVE-2024-25110 affecting package azure-iot-sdk-c for versions less than 2022.01.21-3

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

8.1CVSS7.2AI score0.00739EPSS
Exploits0References1
OSV
OSVadded 2024/02/12 8:15 p.m.3 views

AZL-34556 CVE-2024-25110 affecting package azure-iot-sdk-c for versions less than 2024.03.04-1

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

8.1CVSS6.1AI score0.00739EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2024/02/12 8:15 p.m.37 views

CVE-2024-25110

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

9.8CVSS7.1AI score0.00739EPSS
Exploits0References4
OSV
OSVadded 2024/02/12 7:58 p.m.25 views

CVE-2024-25110 Azure IoT Platform Device SDK Remote Code Execution Vulnerability

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

9.8CVSS8.3AI score0.00739EPSS
Exploits0References4
Rows per page
Query Builder