Threats Tagged 'cve-2024-48949'
View all threats tagged with 'cve-2024-48949'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2024-48949'
Click on any threat for detailed analysis and mitigation recommendations
Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.6 bug fixes and container updatesCVE-2024-42459 0 Red Hat Advanced Cluster Management for Kubernetes 2.10.6 includes fixes for several bugs and security vulnerabilities related to signature malleability in the nodejs/elliptic library. These vulnerabilities involve missing checks in EDDSA and ECDSA signature handling that could allow manipulation of signature bytes. The update addresses these issues by correcting the signature validation logic. The advisory rates the security impact as moderate and provides updated container images to remediate the vulnerabilities. Join the discussion | GCVE Database | 09/18/2024, 19:22:01 UTC Added: 06/28/2026, 22:14:21 UTC |
Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.3 bug fixes and container updatesCVE-2024-42459 0 Red Hat Advanced Cluster Management for Kubernetes 2.11.3 includes security fixes addressing multiple signature malleability vulnerabilities in the nodejs/elliptic library. These vulnerabilities involve missing checks in EDDSA and ECDSA signature verification, allowing manipulation of signature bytes. The update provides container image fixes to mitigate these issues. Join the discussion | GCVE Database | 10/11/2024, 01:43:45 UTC Added: 06/28/2026, 22:14:20 UTC |
Red Hat Security Advisory: grafana:7.3.6 security updateCVE-2024-48949 0 A security vulnerability (CVE-2024-48949) affecting Grafana 7.3.6 in Red Hat Enterprise Linux 8.4 involves missing validation in the elliptic library's EDDSA signature verification. This flaw could impact the integrity of cryptographic signature verification. Red Hat has released an important security update for Grafana 7.3.6 to address this issue. The update is available for multiple Red Hat Enterprise Linux 8.4 variants including Extended Update Support, Advanced Mission Critical Update Support, Telecommunications Update Service, and Update Services for SAP Solutions. Users are advised to apply the update as per Red Hat's guidance to remediate the vulnerability. Join the discussion | GCVE Database | 10/23/2024, 10:12:31 UTC Added: 06/28/2026, 22:14:20 UTC |
Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.6 security updates and bug fixesCVE-2024-42459 0 Red Hat has issued a security advisory for Multicluster Engine for Kubernetes version 2.4.6 addressing multiple signature malleability vulnerabilities in the nodejs/elliptic library. These include issues with EDDSA and ECDSA signature verification due to missing checks and acceptance of BER-encoded signatures. The vulnerabilities could allow manipulation of cryptographic signatures. The update fixes these issues by providing updated container images. No known exploits are reported in the wild. Join the discussion | GCVE Database | 10/28/2024, 17:06:38 UTC Added: 06/28/2026, 22:14:20 UTC |
Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.5 bug fixes and container updatesCVE-2024-42459 0 Red Hat Advanced Cluster Management for Kubernetes 2.9.5 container images address multiple signature malleability vulnerabilities in the nodejs/elliptic library. These include issues with EDDSA and ECDSA signature verification due to missing checks and acceptance of BER-encoded signatures. The update fixes these cryptographic validation bugs to improve security in cluster management operations. Join the discussion | GCVE Database | 10/28/2024, 21:28:29 UTC Added: 06/28/2026, 22:14:20 UTC |
Showing 1 to 5 of 5 results