VDB
CVE-2024-49761
CVE-2024-49761
PUBLISHED
CVSS 8.699999809265137 HIGH
Ruby ist eine interpretierte, objektorientierte Skriptsprache.
EPSS 1.65% · 82.3th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
1.65%
82.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gentoo | Gentoo Linux | |
| Debian | Debian Linux | |
| Dell | Dell Secure Connect Gateway <5.30.0.14 | |
| SUSE | SUSE Linux | |
| Open Source | Open Source LogStash <8.16.0 | |
| Ubuntu | Ubuntu Linux | |
| Xerox | Xerox FreeFlow Print Server 9 | |
| SUSE | SUSE openSUSE | |
| IBM | IBM DB2 on Cloud Pak for Data | |
| IBM | IBM License Metric Tool | |
| Red Hat | Red Hat Enterprise Linux | |
| Open Source | Open Source Ruby <3.2 | |
| Open Source | Open Source LogStash <8.15.3 | |
| RESF | RESF Rocky Linux | |
| Oracle | Oracle Linux |
Timeline
- CVE Published
- Jan 21, 1970 Security Advisory
- Oct 28, 2024 Coalition ESS Score
- Oct 29, 2024 EPSS Score
- Oct 29, 2024 Coalition ESS Score
- Nov 6, 2024 Coalition ESS Score
- Nov 30, 2024 PoC Published
- Dec 5, 2024 EPSS Score
- Dec 24, 2024 EPSS Score
- Jan 29, 2025 EPSS Score
- Jan 31, 2025 Coalition ESS Score
- Feb 16, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3276.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3276 advisory
- https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761/ advisory
- https://ubuntu.com/security/notices/USN-7091-1 advisory
- https://ubuntu.com/security/notices/USN-7091-2 advisory
- https://access.redhat.com/errata/RHSA-2024:10777 advisory
- https://access.redhat.com/errata/RHSA-2024:10834 advisory
- https://access.redhat.com/errata/RHSA-2024:10860 advisory
- https://access.redhat.com/errata/RHSA-2024:10850 advisory
- https://access.redhat.com/errata/RHSA-2024:10858 advisory
- https://linux.oracle.com/errata/ELSA-2024-10834.html advisory
- https://linux.oracle.com/errata/ELSA-2024-10860.html advisory
- https://www.ibm.com/support/pages/node/7178364 advisory
- https://linux.oracle.com/errata/ELSA-2024-10850.html advisory
- https://linux.oracle.com/errata/ELSA-2024-10858.html advisory
- https://access.redhat.com/errata/RHSA-2024:10961 advisory
- https://access.redhat.com/errata/RHSA-2024:10964 advisory
- https://access.redhat.com/errata/RHSA-2024:10966 advisory
- https://access.redhat.com/errata/RHSA-2024:10977 advisory
- https://access.redhat.com/errata/RHSA-2024:10982 advisory
…and 34 more