CVE-2024-38355 | socket.io up to 2.5.0/4.6.1 denial of service (GHSA-25hc-qcg6-38wj)

Inserito da Angelo Barbosa | Giu 19, 2024 | CVE

A vulnerability was found in socket.io up to 2.5.0/4.6.1. It has been classified as problematic. This affects an unknown part. The manipulation leads to denial of service.

This vulnerability is uniquely identified as CVE-2024-38355. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38355 | socket.io up to 2.5.0/4.6.1 denial of service (GHSA-25hc-qcg6-38wj)

Post correlati

CVE-2024-24485 | Silex DS-600 1.4.1 GET EEP_DATA Command information disclosure

CVE-2024-26649 | Linux Kernel up to 6.6.14/6.7.2 amdgpu_ucode_request null pointer dereference (8b5bacce2d13/d3887448486c/bc03c02cc199)

CVE-2024-5044 | Emlog Pro 2.3.4 Cookie AuthCookie improper authentication

CVE-2024-43799 | pillarjs send up to 0.18.x HTTP Response sendStream.redirect cross site scripting