CVE-2024-2184
published 2024-03-11CVE-2024-2184: Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on…
PriorityP262critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.81%
52.5th percentile
Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.*:Satera MF740C Series/Satera MF640C Series/Satera LBP660C Series/Satera LBP620C Series firmware v12.07 and earlier, and Satera MF750C Series/Satera LBP670C Series firmware v03.09 and earlier sold in Japan.Color imageCLASS MF740C Series/Color imageCLASS MF640C Series/Color imageCLASS X MF1127C/Color imageCLASS LBP664Cdw/Color imageCLASS LBP622Cdw/Color imageCLASS X LBP1127C firmware v12.07 and earlier, and Color imageCLASS MF750C Series/Color imageCLASS X MF1333C/Color imageCLASS LBP674Cdw/Color imageCLASS X LBP1333C firmware v03.09 and earlier sold in US.i-SENSYS MF740C Series/i-SENSYS MF640C Series/C1127i Series/i-SENSYS LBP660C Series/i-SENSYS LBP620C Series/C1127P firmware v12.07 and earlier, and i-SENSYS MF750C Series/C1333i Series/i-SENSYS LBP673Cdw/C1333P firmware v03.09 and earlier sold in Europe.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canon_inc | c1127i_series | — | — |
| canon_inc | c1127p | — | — |
| canon_inc | c1333i_series | — | — |
| canon_inc | c1333p | — | — |
| canon_inc | color_imageclass_lbp622cdw | — | — |
| canon_inc | color_imageclass_lbp664cdw | — | — |
| canon_inc | color_imageclass_lbp674cdw | — | — |
| canon_inc | color_imageclass_mf640c_series | — | — |
| canon_inc | color_imageclass_mf740c_series | — | — |
| canon_inc | color_imageclass_mf750c_series | — | — |
| canon_inc | color_imageclass_x_lbp1127c | — | — |
| canon_inc | color_imageclass_x_lbp1333c | — | — |
| canon_inc | color_imageclass_x_mf1127c | — | — |
| canon_inc | color_imageclass_x_mf1333c | — | — |
| canon_inc | i-sensys_lbp620c_series | — | — |
| canon_inc | i-sensys_lbp660c_series | — | — |
| canon_inc | i-sensys_lbp673cdw | — | — |
| canon_inc | i-sensys_mf640c_series | — | — |
| canon_inc | i-sensys_mf740c_series | — | — |
| canon_inc | i-sensys_mf750c_series | — | — |
| canon_inc | satera_lbp620c_series | — | — |
| canon_inc | satera_lbp660c_series | — | — |
| canon_inc | satera_lbp670c_series | — | — |
| canon_inc | satera_mf640c_series | — | — |
| canon_inc | satera_mf740c_series | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat7.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-76j8-6c8j-572v: Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers(*) which may allow an attac
ghsa_unreviewed·2024-03-11
CVE-2024-2184 [CRITICAL] CWE-787 GHSA-76j8-6c8j-572v: Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers(*) which may allow an attac
Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.*:Satera MF740C Series/Satera MF640C Series/Satera LBP660C Series/Satera LBP620C Series firmware v12.07 and earlier, and Satera MF750C Series/Satera LBP670C Series firmware v03.09 and earlier sold in Japan.Color imageCLASS MF740C Series/Color imageCLASS MF640C Series/Color imageCLASS X MF1127C/Color imageCLASS LBP664Cdw/Color imageCLASS LBP622Cdw/Color imageCLASS X LBP1127C firmware v12.07 and earlier, and Color imageCLASS MF750C Series/Color imageCLASS X MF1333C/Color imageCLASS LBP674Cdw/Color imageCLASS X LBP1333C firmware v03.09 and
Red Hat
kernel: octeontx2-af: fix the double free in rvu_npc_freemem()
vendor_redhat·2024-05-30·CVSS 7.1
CVE-2024-36030 [HIGH] CWE-415 kernel: octeontx2-af: fix the double free in rvu_npc_freemem()
kernel: octeontx2-af: fix the double free in rvu_npc_freemem()
In the Linux kernel, the following vulnerability has been resolved:
octeontx2-af: fix the double free in rvu_npc_freemem()
Clang static checker(scan-build) warning:
drivers/net/ethernet/marvell/octeontx2/af/rvu_npc.c:line 2184, column 2
Attempt to free released memory.
npc_mcam_rsrcs_deinit() has released 'mcam->counters.bmap'. Deleted this
redundant kfree() to fix this double free problem.
Package: kernel (Red Hat Enterprise Linux 6) - Out of support scope
Package: kernel (Red Hat Enterprise Linux 7) - Out of support scope
Package: kernel-rt (Red Hat Enterprise Linux 7) - Out of support scope
Package: kernel (Red Hat Enterprise Linux 8) - Not affected
Package: kernel-rt (Red Hat Enterprise Linux 8) - Not affected
Packag
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-03-11
Published