Question

CVE-2024-7528 not closing on Rapid7/Nexpose scans for Windows Server 2012 R2

2 wótegronje
0 ma toś ten problem
Slědne wótegrono wót Chris C

pśed 1 góźinu

12.11.24 8:58

CVE-2024-7528 is not closing on Rapid7/Nexpose re-scans for Windows 2012 R2 Servers. When the latest ESR package for Windows 2012 R2 is applied the vulnerability remains open even when using ESR version 115.17.0.

When I check the NVD it looks like the only vulnerable versions are <115.7.0. https://nvd.nist.gov/vuln/detail/CVE-2024-7528#range-13199073

Is this vulnerability resolved in any released version of ESR? In browsing the release notes for the past few ESR releases I'm not seeing it mentioned so curious if it's

CVE-2024-7528 is not closing on Rapid7/Nexpose re-scans for Windows 2012 R2 Servers. When the latest ESR package for Windows 2012 R2 is applied the vulnerability remains open even when using ESR version 115.17.0. When I check the NVD it looks like the only vulnerable versions are <115.7.0. https://nvd.nist.gov/vuln/detail/CVE-2024-7528#range-13199073 Is this vulnerability resolved in any released version of ESR? In browsing the release notes for the past few ESR releases I'm not seeing it mentioned so curious if it's

Answer 1 · 2024-11-12 08:58:59.102142

Mike Kaply

Moderator

12.11.24 9:56

This was not an issue in the 115 ESR. The bug that caused it landed in Firefox 127.

Answer 2 · 2024-11-12 08:58:59.102142

Chris C Pšašaŕ

Źinsa 6:41

Thanks Mike! I'm guessing its an issue with the scanner misidentifying which versions are effected by that CVE.

Pomoc pśepytaś

CVE-2024-7528 not closing on Rapid7/Nexpose scans for Windows Server 2012 R2

Wšykne wótegrona (2)

Wužytny?

Wužytny?

Pó produkśe wuslěźiś

Pó temje wuslěźiś

Pó produkśe pśepytaś

Wšykne forumowe nitki pó temje pśepytaś

Pomoc dostaś z

Pomoc pśepytaś

CVE-2024-7528 not closing on Rapid7/Nexpose scans for Windows Server 2012 R2

Wšykne wótegrona (2)

Wužytny?

Wužytny?