Threats Tagged 'cve-2024-45296'
View all threats tagged with 'cve-2024-45296'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2024-45296'
Click on any threat for detailed analysis and mitigation recommendations
Red Hat Security Advisory: HawtIO 4.1.0 for Red Hat build of Apache Camel 4 Release and security update.CVE-2024-2700 0 Red Hat has released HawtIO 4. 1. 0 for the Red Hat build of Apache Camel 4, addressing multiple security vulnerabilities across various components. These include improper sanitization, code execution, path traversal, denial of service, information leakage, and regular expression denial of service (ReDoS) issues. The update aims to improve developer experience while ensuring security and stability. The advisory rates the security impact as Important (high severity). No CVSS scores are provided, but the vulnerabilities affect critical libraries and frameworks used in enterprise applications. Join the discussion | GCVE Database | 12/12/2024, 20:00:23 UTC Added: 06/01/2026, 21:15:21 UTC |
Red Hat Security Advisory: ACS 4.5 enhancement updateCVE-2024-21538 0 This release of RHACS 4.5.5 introduces the following changes: Bug fix: * Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929) * Scanner V4 now reindexes image upon indexer updates. (ROX-23956) Security fixes: * encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156) * body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590) * dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910) * golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789) * golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790) * cross-spawn: Regular expression denial of service (CVE-2024-21538) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 11/22/2024, 01:06:56 UTC Added: 05/28/2026, 22:15:03 UTC |
Red Hat Security Advisory: security update Logging for Red Hat OpenShift - 5.9.4CVE-2024-24790 0 Logging for Red Hat OpenShift - 5.9.4 logging-loki-container: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790) Join the discussion | GCVE Database | 07/23/2024, 16:27:58 UTC Added: 05/26/2026, 20:58:30 UTC |
Red Hat Security Advisory: Kube Descheduler Operator for Red Hat OpenShift 5.0.2 for RHEL 9CVE-2024-24786 0 The Kube Descheduler Operator for Red Hat OpenShift is an optional operator that deploys the descheduler, which is responsible for evicting pods based on certain strategies. Security Fix(es): * Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155) * Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158) * encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON (CVE-2024-24786) Join the discussion | GCVE Database | 10/29/2024, 17:50:43 UTC Added: 05/26/2026, 20:57:58 UTC |
Showing 1 to 4 of 4 results