VDB
CVE-2024-24788
CVE-2024-24788
PUBLISHED
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.
EPSS 0.20% · 42.2th percentile
Risk Scores
EPSS Score
0.20%
42.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Azure | functions | |
| Bitnami | golang | 1.22.0-0 |
| Bitnami | golang | 1.22.0-0 |
| Cloudflare | dns | |
| Oracle Cloud | functions |
Timeline
- May 9, 2024 EPSS Score
- Jun 2, 2024 EPSS Score
- Jun 26, 2024 EPSS Score
- Jul 20, 2024 EPSS Score
- Sep 7, 2024 EPSS Score
- Oct 1, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 25, 2024 EPSS Score
- Nov 18, 2024 EPSS Score
- Dec 13, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
- Jan 31, 2025 EPSS Score
References
- https://go.dev/cl/578375 url
- https://go.dev/issue/66754 url
- https://groups.google.com/g/golang-announce/c/wkkO4P9stm0 url
- https://pkg.go.dev/vuln/GO-2024-2824 url
- http://www.openwall.com/lists/oss-security/2024/05/08/3 url
- https://security.netapp.com/advisory/ntap-20240605-0002/ url
- https://security.netapp.com/advisory/ntap-20240614-0001/ url
- https://nvd.nist.gov/vuln/detail/CVE-2024-24788 url
- Multiples vulnérabilités dans VMware Tanzu advisory
- Multiples vulnérabilités dans VMware Tanzu advisory