CVE-2024-2291
published 2024-03-20CVE-2024-2291: In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11), 2022.1.12 (14.1.12), 2023.0.9 (15.0.9), 2023.1.4 (15.1.4), a logging bypass…
PriorityP421medium4.3CVSS 3.1
AVNACLPRLUINSUCNILAN
EPSS
0.39%
30.3th percentile
In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11), 2022.1.12 (14.1.12), 2023.0.9 (15.0.9), 2023.1.4 (15.1.4), a logging bypass vulnerability has been discovered. An authenticated user could manipulate a request to bypass the logging mechanism within the web application which results in user activity not being logged properly.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| progress | moveit_transfer | < 2022.0.11 | 2022.0.11 |
| progress | moveit_transfer | >= 2022.1.0 < 2022.1.12 | 2022.1.12 |
| progress | moveit_transfer | >= 2023.0.0 < 2023.0.9 | 2023.0.9 |
| progress | moveit_transfer | >= 2023.1.0 < 2023.1.4 | 2023.1.4 |
| progress_software | moveit_transfer | >= 2022.0.0 (14.0.0) < 2022.0.11 (14.0.11) | 2022.0.11 (14.0.11) |
| progress_software | moveit_transfer | >= 2022.1.0 (14.1.0) < 2022.1.12 (14.1.12) | 2022.1.12 (14.1.12) |
| progress_software | moveit_transfer | >= 2023.0.0 (15.0.0) < 2023.0.9 (15.0.9) | 2023.0.9 (15.0.9) |
| progress_software | moveit_transfer | >= 2023.1.0 (15.1.0) < 2023.1.4 (15.1.4) | 2023.1.4 (15.1.4) |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2ccx-3vjx-pj7f: In Progress MOVEit Transfer versions released before 2022
ghsa_unreviewed·2024-03-20
CVE-2024-2291 [MEDIUM] CWE-778 GHSA-2ccx-3vjx-pj7f: In Progress MOVEit Transfer versions released before 2022
In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11), 2022.1.12 (14.1.12), 2023.0.9 (15.0.9), 2023.1.4 (15.1.4), a logging bypass vulnerability has been discovered. An authenticated user could manipulate a request to bypass the logging mechanism within the web application which results in user activity not being logged properly.
Red Hat
kernel: ring-buffer: Fix overflow in __rb_map_vma
vendor_redhat·2025-01-11·CVSS 5.5
CVE-2024-56368 [MEDIUM] CWE-125 kernel: ring-buffer: Fix overflow in __rb_map_vma
kernel: ring-buffer: Fix overflow in __rb_map_vma
In the Linux kernel, the following vulnerability has been resolved:
ring-buffer: Fix overflow in __rb_map_vma
An overflow occurred when performing the following calculation:
nr_pages = ((nr_subbufs + 1)
__dump_stack lib/dump_stack.c:94 [inline]
dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
print_address_description mm/kasan/report.c:378 [inline]
print_report+0xc3/0x620 mm/kasan/report.c:489
kasan_report+0xd9/0x110 mm/kasan/report.c:602
__rb_map_vma+0x9ab/0xae0 kernel/trace/ring_buffer.c:7058
ring_buffer_map+0x56e/0x9b0 kernel/trace/ring_buffer.c:7138
tracing_buffers_mmap+0xa6/0x120 kernel/trace/trace.c:8482
call_mmap include/linux/fs.h:2183 [inline]
mmap_file mm/internal.h:124 [inline]
__mmap_new_file_vma mm/vma.c:2291 [inline]
__mmap_ne
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-03-20
Published