CVE-2024-47248 : APACHE NIMBLE UP TO 1.7.0 MESH MESSAGE BUFFER OVERFLOW

Description

Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability in Apache NimBLE. Specially crafted MESH message could result in memory corruption when non-default build configuration is used. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to version 1.8.0, which fixes the issue.

References

https://lists.apache.org/thread/z8m7jqh54xybf9kz8q2l3tz92zsj7tmz

For More Information

CVERecord

Contact us to get started

CVE-2024-8114 : GITLAB COMMUNITY EDITION/ENTERPRISE EDITION UP TO 17.4.4/17.5.2/17.6.0 PERSONAL ACCESS TOKEN AUTHORIZATION

Description An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and

Learn more

CVE-2024-49052 : MICROSOFT AZURE FUNCTIONS POLICYWATCH MISSING AUTHENTICATION

Description Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network.

Learn more

CVE-2024-49035 : MICROSOFT PARTNER CENTER PARTNER.MICROSOFT.COM PRIVILEGES MANAGEMENT

Description An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network. References

Learn more