Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-22471

Malicious code in bioql PyPI...

9.8CVSS7.7AI score0.06645EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.8 views

Azure Linux 3.0 Security Update: azure-iot-sdk-c (CVE-2024-25110)

The version of azure-iot-sdk-c installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25110 advisory. - The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities,...

9.8CVSS8AI score0.06645EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.36 views

CBL Mariner 2.0 Security Update: azure-iot-sdk-c (CVE-2024-27099)

The version of azure-iot-sdk-c installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27099 advisory. - The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an...

9.8CVSS7.5AI score0.01418EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/02/29 3:36 a.m.4 views

SUSE CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

8.1CVSS7AI score0.01418EPSS
Exploits0References4
OSV
OSV
added 2024/02/27 7:4 p.m.9 views

AZL-35447 CVE-2024-27099 affecting package azure-iot-sdk-c for versions less than 2022.01.21-3

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS6.9AI score0.01418EPSS
Exploits0References1
OSV
OSV
added 2024/02/27 7:4 p.m.6 views

AZL-35471 CVE-2024-27099 affecting package azure-iot-sdk-c for versions less than 2024.03.04-1

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS6.9AI score0.01418EPSS
Exploits0References1
OSV
OSV
added 2024/02/27 7:4 p.m.7 views

UBUNTU-CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS5.8AI score0.01418EPSS
Exploits0References4
NVD
NVD
added 2024/02/12 8:15 p.m.12 views

CVE-2024-25110

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

9.8CVSS9.8AI score0.06645EPSS
Exploits0References2
OSV
OSV
added 2024/02/12 8:15 p.m.1 views

DEBIAN-CVE-2024-25110

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

8.1CVSS8.1AI score0.06645EPSS
Exploits0References1
OSV
OSV
added 2024/02/12 8:15 p.m.8 views

AZL-34349 CVE-2024-25110 affecting package azure-iot-sdk-c for versions less than 2022.01.21-3

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

8.1CVSS7.2AI score0.06645EPSS
Exploits0References1
Prion
Prion
added 2024/02/12 8:15 p.m.12 views

Design/Logic Flaw

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

7.5CVSS8.1AI score0.06645EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/12 7:58 p.m.30 views

CVE-2024-25110 Azure IoT Platform Device SDK Remote Code Execution Vulnerability

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

9.8CVSS7.6AI score0.06645EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/09 12:4 a.m.19 views

CVE-2024-21646 Azure IoT Platform Device SDK Remote Code Execution Vulnerability

Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binary type data, an integer overflow or wraparound or memory safety issue can occur and may cause remo...

9.8CVSS10AI score0.0511EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/09 12:4 a.m.3 views

CVE-2024-21646 Azure IoT Platform Device SDK Remote Code Execution Vulnerability

Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binary type data, an integer overflow or wraparound or memory safety issue can occur and may cause remo...

9.8CVSS8.3AI score0.0511EPSS
Exploits0References2
Rows per page
Query Builder