Metrics
Affected Vendors & Products
Thu, 07 Nov 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:/a:redhat:acm:2.12::el9 |
Wed, 06 Nov 2024 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:/a:redhat:acm:2.10::el9 cpe:/a:redhat:multicluster_engine:2.5::el8 |
Tue, 29 Oct 2024 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat multicluster Engine
|
|
CPEs | cpe:/a:redhat:acm:2.9::el8 cpe:/a:redhat:multicluster_engine:2.4::el8 cpe:/a:redhat:rhel_aus:8.2 |
|
Vendors & Products |
Redhat multicluster Engine
|
Wed, 23 Oct 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat rhel Aus
Redhat rhel E4s Redhat rhel Tus |
|
CPEs | cpe:/a:redhat:rhel_aus:8.4 cpe:/a:redhat:rhel_e4s:8.4 cpe:/a:redhat:rhel_tus:8.4 |
|
Vendors & Products |
Redhat rhel Aus
Redhat rhel E4s Redhat rhel Tus |
Tue, 15 Oct 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Indutny
Indutny elliptic |
|
CPEs | cpe:2.3:a:indutny:elliptic:*:*:*:*:*:node.js:*:* | |
Vendors & Products |
Indutny
Indutny elliptic |
|
Metrics |
cvssV3_1
|
cvssV3_1
|
Fri, 11 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 11 Oct 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat acm |
|
CPEs | cpe:/a:redhat:acm:2.11::el9 | |
Vendors & Products |
Redhat
Redhat acm |
Fri, 11 Oct 2024 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-347 |
Thu, 10 Oct 2024 14:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | elliptic: Missing Validation in Elliptic's EDDSA Signature Verification | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Thu, 10 Oct 2024 00:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | The verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js omits "sig.S().gte(sig.eddsa.curve.n) || sig.S().isNeg()" validation. | |
References |
|
Status: PUBLISHED
Assigner: mitre
Published: 2024-10-10T00:00:00
Updated: 2024-10-10T20:21:18.400Z
Reserved: 2024-10-10T00:00:00
Link: CVE-2024-48949
Updated: 2024-10-10T20:21:12.988Z
Status : Analyzed
Published: 2024-10-10T01:15:11.127
Modified: 2024-10-15T14:07:04.057
Link: CVE-2024-48949