CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-29217 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Answer.This issue affects Apache Answer: before 1.3.0.
XSS attack when user changes personal website. A logged-in user, when modifying their personal website, can input malicious code in the website to create such an attack.
Users are recommended to upgrade to version [1.3.0], which fixes the issue.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29178 |
Description: On versions before 2.1.4, a user could log in and perform a template injection attack resulting in Remote Code Execution on the server, The attacker must successfully log into the system to launch an attack, so this is a moderate-impact vulnerability.
Mitigation:
all users should upgrade to 2.1.4
EPSS Score: 0.16%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29166 |
Description: HDF5 through 1.14.3 contains a buffer overflow in H5O__linfo_decode, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29165 |
Description: HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_fletcher32, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29164 |
Description: HDF5 through 1.14.3 contains a stack buffer overflow in H5R__decode_heap, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29163 |
Description: HDF5 through 1.14.3 contains a heap buffer overflow in H5T__bit_find, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29161 |
Description: HDF5 through 1.14.3 contains a heap buffer overflow in H5A__attr_release_table, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29160 |
Description: HDF5 through 1.14.3 contains a heap buffer overflow in H5HG__cache_heap_deserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29157 |
Description: HDF5 through 1.14.3 contains a heap buffer overflow in H5HG_read, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-29133 |
Description: Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1.
Users are recommended to upgrade to version 2.10.1, which fixes the issue.
EPSS Score: 0.05%
February 14th, 2025 (5 months ago)
|