WID-SEC-W-2024-1638

Affected Products

Exploit Intelligence

• POC for the CVE-2022-36944 vulnerability exploit (github-poc-repo)
• Repo containing pyarrow 14.0.0, vulnerable to RCE - CVE-2023-47248 (github-poc-repo)
• Apache ActiveMQ漏洞综合利用工具(CVE-2015-5254，CVE-2016-3088，CVE-2022-41678，CVE-2023-46604，CVE-2024-32114，CVE-2026-34197，CVE-2026-40466， CVE-2026-42588) (github-poc-repo)
• Docker Deskop giving issue CVE-2024-26308 for maven [reproduce] (github-poc)
• CKEditor 4 < 4.24.0-lts - XSS vulnerability in samples that use the "preview" feature. (github-poc)
• Proof of concept of the CVE-2024-24549, Exploit in Python. (github-poc)
• Abdurahmon3236/CVE-2024-24549 (github-poc)
• Performant-Labs/CVE-2024-22262 (github-poc)
• Repo containing pyarrow 14.0.0, vulnerable to RCE - CVE-2023-47248 (github-poc)
• POC for the CVE-2022-36944 vulnerability exploit (github-poc)

…and 25 more exploits

Timeline

• Jul 16, 2024 CVE Published

References

• https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1638.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1638 advisory
• https://www.oracle.com/security-alerts/cpujul2024.html#AppendixIFLX url