Severity: High
ID: 205953
File Name: EulerOS_SA-2024-2179.nasl
Version: 1.2
Type: local
Family: Huawei Local Security Checks
Published: 8/20/2024
Updated: 10/21/2024
Supported Sensors: Nessus
Risk Factor: High
Score: 7.8
Risk Factor: High
Base Score: 9
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:P/A:P
CVSS Score Source: CVE-2024-33602
Risk Factor: High
Base Score: 8.6
Temporal Score: 8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
CPE: p-cpe:/a:huawei:euleros:glibc-locale-archive, cpe:/o:huawei:euleros:uvp:2.11.0, p-cpe:/a:huawei:euleros:glibc, p-cpe:/a:huawei:euleros:libnsl, p-cpe:/a:huawei:euleros:nscd, p-cpe:/a:huawei:euleros:glibc-common, p-cpe:/a:huawei:euleros:glibc-locale-source, p-cpe:/a:huawei:euleros:glibc-all-langpacks
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/EulerOS/release, Host/EulerOS/rpm-list, Host/EulerOS/uvp_version
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/20/2024
Vulnerability Publication Date: 4/5/2024
Metasploit (CosmicSting: Magento Arbitrary File Read (CVE-2024-34102) + PHP Buffer Overflow in the iconv() function of glibc (CVE-2024-2961))
CVE: CVE-2024-2961, CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602