Detect and mitigate CVE-2024-3094, a critical supply chain compromise, affecting XZ Utils Data compression library. Organizations should patch urgently.

ubuntucve 1

redhatcve 1

rapid7blog 1

securelist 4

debiancve 1

rosalinux 3

githubexploit 47

archlinux 1

osv 4

thn 2

vulnrichment 1

f5 1

cvelist 1

alpinelinux 1

paloalto 1

cve 1

nessus 3

attackerkb 1

talosblog 1

arista 1

veracode 1

gentoo 1

debian 1

qualysblog 1

openvas 1

hackread 1

nvd 1

trellix 1

ubuntucve

CVE-2024-3094

2024-03-29 00:00:00

redhatcve

CVE-2024-3094

2024-03-29 16:50:47

rapid7blog

Backdoored XZ Utils (CVE-2024-3094)

2024-04-01 17:13:05

securelist

XZ backdoor story – Initial analysis

2024-04-12 08:00:34

APT trends report Q2 2024

2024-08-13 12:00:28

IT threat evolution Q2 2024

2024-09-03 08:00:08

debiancve

CVE-2024-3094

2024-03-29 17:15:21

rosalinux

Advisory ROSA-SA-2024-2409

2024-04-23 12:23:07

Advisory ROSA-SA-2024-2407

2024-04-23 12:16:56

Advisory ROSA-SA-2024-2408

2024-04-23 12:20:30

githubexploit

Exploit for Embedded Malicious Code in Tukaani Xz

2024-04-01 16:08:50

Exploit for Embedded Malicious Code in Tukaani Xz

2024-04-01 02:25:33

Exploit for Embedded Malicious Code in Tukaani Xz

2024-04-01 04:28:24

archlinux

[ASA-202403-1] xz: arbitrary code execution

2024-03-29 00:00:00

osv

CGA-xp9g-w4gq-2v78

2024-06-06 12:30:02

CGA-3r9w-5x9c-pwr7

2024-06-06 12:22:07

liblzma5-32bit-5.6.2-1.1 on GA media

2024-06-15 00:00:00

thn

Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros

2024-03-30 05:23:00

Malicious Code in XZ Utils for Linux Systems Enables Remote Code Execution

2024-04-02 13:18:00

vulnrichment

CVE-2024-3094 Xz: malicious code in distributed source

2024-03-29 16:51:12

K000139141 : liblzma vulnerability CVE-2024-3094

2024-04-01 00:00:00

cvelist

CVE-2024-3094 Xz: malicious code in distributed source

2024-03-29 16:51:12

alpinelinux

CVE-2024-3094

2024-03-29 17:15:21

paloalto

Informational: Impact of Malicious Code in XZ Tools and Libraries (CVE-2024-3094)

2024-04-01 19:30:00

cve

CVE-2024-3094

2024-03-29 17:15:21

nessus

Potential exposure to XZ Utils SSH Backdoor (CVE-2024-3094)

2024-03-29 00:00:00

XZ Utils 5.6.0 / 5.6.1 Liblzma Backdoor Check

2024-04-01 00:00:00

GLSA-202403-04 : XZ utils: Backdoor in release tarballs

2024-04-01 00:00:00

attackerkb

CVE-2024-3094

2024-03-29 00:00:00

talosblog

There are plenty of ways to improve cybersecurity that don’t involve making workers return to a physical office

2024-04-04 18:00:39

arista

Security Advisory 0095

2024-04-03 00:00:00

veracode

Injected Malicious Code

2024-04-01 21:18:10

gentoo

XZ utils: Backdoor in release tarballs

2024-03-29 00:00:00

debian

[SECURITY] [DSA 5649-1] xz-utils security update

2024-03-29 16:10:02

qualysblog

XZ Utils SSHd Backdoor

2024-03-30 04:06:05

openvas

Tukaani Project XZ Utils Backdoor (Feb/Mar 2024)

2024-04-02 00:00:00

hackread

Backdoor Discovered in XZ Utils: Patch Your Systems Now (CVE-2024-3094)

2024-04-01 23:17:59

nvd

CVE-2024-3094

2024-03-29 17:15:21

trellix

The Bug Report - April 2024 Edition

2024-04-29 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

Confidence

Low

EPSS

0.144

Percentile

95.8%

JSON

Related for WIZBLOG:BABAEABBA55C1AF14806159B284EF03E