CVE-2024-7345
published 2024-09-03CVE-2024-7345: Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on…
PriorityP351critical9.6CVSS 3.1
AVAACLPRNUINSCCHIHAH
EPSS
0.59%
43.8th percentile
Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| progress | openedge | <= 11.7.18 | — |
| progress | openedge | 11.7.0 – 11.7.19 | — |
| progress | openedge | 12.0 – 12.2.13 | — |
| progress | openedge | 12.2.0 – 12.2.14 | — |
CVSS provenance
nvdv3.19.6CRITICALCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-556j-85mj-9j97: Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on
ghsa_unreviewed·2024-09-03
CVE-2024-7345 [HIGH] CWE-94 GHSA-556j-85mj-9j97: Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on
Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms
Red Hat
kernel: block/ioctl: prefer different overflow check
vendor_redhat·2024-07-12·CVSS 7.8
CVE-2024-41000 [HIGH] CWE-190 kernel: block/ioctl: prefer different overflow check
kernel: block/ioctl: prefer different overflow check
In the Linux kernel, the following vulnerability has been resolved:
block/ioctl: prefer different overflow check
Running syzkaller with the newly reintroduced signed integer overflow
sanitizer shows this report:
[ 62.982337] ------------[ cut here ]------------
[ 62.985692] cgroup: Invalid name
[ 62.986211] UBSAN: signed-integer-overflow in ../block/ioctl.c:36:46
[ 62.989370] 9pnet_fd: p9_fd_create_tcp (7343): problem connecting socket to 127.0.0.1
[ 62.992992] 9223372036854775807 + 4095 cannot be represented in type 'long long'
[ 62.997827] 9pnet_fd: p9_fd_create_tcp (7345): problem connecting socket to 127.0.0.1
[ 62.999369] random: crng reseeded on system resumption
[ 63.000634] GUP no longer grows the stack in syz-executor.2 (7353):
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-09-03
Published