CVSS: 8.7EPSS: 0%CPEs: 4EXPL: 0CVE-2024-10314 – Unauthenticated Denial of Service via Auto Generation Function
https://notcve.org/view.php?id=CVE-2024-10314
11 Nov 2024 — In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the auto-generation function was identified. Reported by Karol Więsek. • https://portal.perforce.com/s/detail/a91PA000001SZNFYA4 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.7EPSS: 0%CPEs: 5EXPL: 0CVE-2024-10344 – Unauthenticated Denial of Service via Refuse Function
https://notcve.org/view.php?id=CVE-2024-10344
11 Nov 2024 — In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the refuse function was identified. Reported by Karol Więsek. • https://portal.perforce.com/s/detail/a91PA000001SZOrYAO • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.7EPSS: 0%CPEs: 5EXPL: 0CVE-2024-10345 – Unauthenticated Denial of Service via Shutdown Function
https://notcve.org/view.php?id=CVE-2024-10345
11 Nov 2024 — In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the shutdown function was identified. Reported by Karol Więsek. • https://portal.perforce.com/s/detail/a91PA000001SZQTYA4 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8067 – Unicode "best fit" argument injection
https://notcve.org/view.php?id=CVE-2024-8067
24 Sep 2024 — In versions of Helix Core prior to 2024.1 Patch 2 (2024.1/2655224) a Windows ANSI API Unicode "best fit" argument injection was identified. • https://portal.perforce.com/s/detail/a91PA000001SXEzYAO • CWE-176: Improper Handling of Unicode Encoding •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2000-0722
https://notcve.org/view.php?id=CVE-2000-0722
21 Sep 2000 — Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages. • http://archives.neohapsis.com/archives/bugtraq/2000-08/0240.html •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0723
https://notcve.org/view.php?id=CVE-2000-0723
21 Sep 2000 — Helix GNOME Updater helix-update 0.5 and earlier does not properly create /tmp directories, which allows local users to create empty system configuration files such as /etc/config.d/bashrc, /etc/config.d/csh.cshrc, and /etc/rc.config. • http://archives.neohapsis.com/archives/bugtraq/2000-08/0251.html •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0724
https://notcve.org/view.php?id=CVE-2000-0724
21 Sep 2000 — The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files. • http://archives.neohapsis.com/archives/bugtraq/2000-08/0351.html •