CVE-2024-9484
published 2024-10-04CVE-2024-9484: An null-pointer-derefrence in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed xar file to…
PriorityP418medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
0.13%
3.2th percentile
An null-pointer-derefrence in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed xar file to crash the application during file processing.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| avast | antivirus | < 24092400 | 24092400 |
| avg | antivirus | < 24092400 | 24092400 |
| avg | avast_antivirus | >= 24/Sep/2024 < < 24092400 | < 24092400 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET EXPLOIT Attempted Directory Traversal via HTTP Cookie (CVE-2020-9484)
suricata·2020-06-05·CVSS 7.0
CVE-2020-9484 [HIGH] ET EXPLOIT Attempted Directory Traversal via HTTP Cookie (CVE-2020-9484)
ET EXPLOIT Attempted Directory Traversal via HTTP Cookie (CVE-2020-9484)
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET EXPLOIT Attempted Directory Traversal via HTTP Cookie (CVE-2020-9484)"; flow:established,to_server; http.cookie; content:"JSESSIONID=../"; startswith; fast_pattern; reference:url,github.com/masahiro331/CVE-2020-9484/blob/master/README.md; reference:cve,2020-9484; classtype:attempted-recon; sid:2030256; rev:2; metadata:affected_product Tomcat, created_at 2020_06_05, cve CVE_2020_9484, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_11_26, mitre_tactic_id TA0007, mitre_tactic_name Discovery, mitre_technique_id T1083, mitre_technique_name File_And_Directory
No public exploits indexed.
No writeups or analysis indexed.
2024-10-04
Published