CVE-2024-29857
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-29857
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java (BC Java) before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C# .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Bouncy Castle 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Bouncy Castle是Bouncy Castle组织的密码学中使用的API集合。它包括适用于Java和C#编程语言的API 。 Bouncy Castle 1.78之前版本存在安全漏洞,该漏洞源于精心设计的F2m参数可能会导致曲线参数评估期间CPU消耗过多。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2024-29857
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-29857
请登录查看更多情报信息。
Same Patch Batch · n/a · 2024-05-09 · 74 CVEs total
| CVE-2024-31954 | 7.3 HIGH | SAMSUNG portable SSD T5 PC 安全漏洞 |
| CVE-2024-31952 | 6.7 MEDIUM | SAMSUNG Magician PC Software 安全漏洞 |
| CVE-2024-31953 | 6.7 MEDIUM | SAMSUNG Magician PC Software 安全漏洞 |
| CVE-2024-4317 | 3.1 LOW | PostgreSQL pg_stats_ext and pg_stats_ext_exprs lack authorization checks |
| CVE-2024-32622 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32621 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32619 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32613 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32618 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32615 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32614 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-34209 | TOTOLINK CPE CP450 安全漏洞 | |
| CVE-2024-34200 | TOTOLINK CPE CP450 安全漏洞 | |
| CVE-2024-32616 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32620 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32623 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-32624 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-33873 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-33874 | HDF Group HDF5 安全漏洞 | |
| CVE-2024-33875 | HDF Group HDF5 安全漏洞 |
Showing top 20 of 74 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2024-29857
No comments yet