ZDI-24-1639: Hewlett Packard Enterprise Insight Remote Support processAtatchmentDataStream Directory Traversal Remote Code Execution Vulnerability

December 2, 2024

Read Time:14 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hewlett Packard Enterprise Insight Remote Support. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2024-53676.

linenoise-1.0-12.20200312git97d2850.fc42

FEDORA-2025-b83972992e Packages in this update: linenoise-1.0-12.20200312git97d2850.fc42 Update description: CVE-2025-9810 Read More

September 6, 2025

linenoise-1.0-9.20200312git97d2850.fc41

FEDORA-2025-cbe2e6c8ce Packages in this update: linenoise-1.0-9.20200312git97d2850.fc41 Update description: CVE-2025-9810 Read More

September 6, 2025

linenoise-1.0-3.20200312git97d2850.el9

FEDORA-EPEL-2025-e35c40aadd Packages in this update: linenoise-1.0-3.20200312git97d2850.el9 Update description: CVE-2025-9810 Read More

September 6, 2025

linenoise-1.0-2.20200312git97d2850.el8

FEDORA-EPEL-2025-8a558394ca Packages in this update: linenoise-1.0-2.20200312git97d2850.el8 Update description: CVE-2025-9810 Read More

September 6, 2025

webkitgtk-2.49.90-3.el10_1

FEDORA-EPEL-2025-bfa97edd0c Packages in this update: webkitgtk-2.49.90-3.el10_1 Update description: Fixup sources file Read More

September 6, 2025

buildah-1.41.4-1.fc43 containers-common-0.64.2-1.fc43 podman-5.6.1-1.fc43

FEDORA-2025-b93734b6b8 Packages in this update: buildah-1.41.4-1.fc43 containers-common-0.64.2-1.fc43 podman-5.6.1-1.fc43 Update description: Security fix for CVE-2025-9566 Automatic update for containers-common-0.64.2-1.fc43, buildah-1.41.4-1.fc43, podman-5.6.1-1.fc43....

September 5, 2025

GOP Cries Censorship Over Spam Filters That Work

Friday Squid Blogging: The Origin and Propagation of Squid

My Latest Book: Rewiring Democracy

Bridgestone Confirms “Limited Cyber Incident” Impacting Facilities in North America

Germany charges hacker with Rosneft cyberattack in latest wake-up call for critical infrastructure

Parents warned that robot toys spied on children’s location without consent

South Carolina School District Data Breach Affects 31,000 People

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security

GPT-4o-mini Falls for Psychological Manipulation

ZDI-24-1639: Hewlett Packard Enterprise Insight Remote Support processAtatchmentDataStream Directory Traversal Remote Code Execution Vulnerability

linenoise-1.0-12.20200312git97d2850.fc42

linenoise-1.0-9.20200312git97d2850.fc41

linenoise-1.0-3.20200312git97d2850.el9

linenoise-1.0-2.20200312git97d2850.el8

webkitgtk-2.49.90-3.el10_1

buildah-1.41.4-1.fc43 containers-common-0.64.2-1.fc43 podman-5.6.1-1.fc43