Does a CVE affect MetaDefender ICAP Server?

In today's rapidly evolving digital landscape, understanding the impact of security vulnerabilities is more crucial than ever. The Common Vulnerabilities and Exposures (CVE) list is an invaluable resource for identifying potential security risks associated with software products. This article provides a comprehensive overview of various CVEs, helping you determine whether MetaDefender ICAP Server is affected. By staying informed about these vulnerabilities, you can take proactive measures to protect your systems and data from potential threats.

CVE

Summary

CVE-2024-6387

CVE-2024-6387 is the vulnerability of OpenSSH Servers, do not relate to our product

CVE-2024-32113

CVE-2024-32113 is the vulnerability of Apache OFBiz which we don't use in our product

CVE-2024-38856

CVE-2024-32113 is the vulnerability of Apache OFBiz which we don't use in our product

CVE-2020-17519

CVE-2020-17519 relates to Apache Flink 1.11.0, our product do not use Apache Flink 1.11.0

CVE-2024-4741

we enable FIPS module with OpenSSL then so our product is not impacted

CVE-2023-30547

CVE-2023-30547 relates to sandbox vm2, do not relate to MetaDefender ICAP Server

CVE-2019-9082

MetaDefender ICAP Server does not use ThinkPHP therefore the mentioned CVEs do not impact the product

CVE-2024-4577

MetaDefender ICAP Server does not use PHP therefore the mentioned CVEs do not impact the product

CVE-2024-5535

CVE-2024-5535 is the vulnerability for OpenSSL, since we are enabling FIPS modules we are not affected by this CVE

CVE-2024-27348

CVE-2024-27348 is the CVE of Apache HugeGraph-Serve so our product is not impacted

CVE-2018-25103

CVE-2018-25103 is the CVE of lib lighttpd, MetaDefender ICAP Server does not use it so it's not impacted

CVE-2024-4367

CVE-2024-4367 is related to react-pdf displays PDFs in React apps, MetaDefender ICAP Server does not use it so it's not impacted

CVE-2024-34342

CVE-2024-34342 MetaDefender ICAP Server does not use PDF.js therefore the CVEs do not impact MetaDefender ICAP Server

CVE-2024-40898

MetaDefender ICAP Serverdoes not use Apache HTTP Server and is not affected by CVE-2024-40898

CVE-2024-40725

MetaDefender ICAP Server does not use Apache HTTP Server and is not affected by CVE-2024-40725

CVE-2024-1874

CVE-2024-1874 has pointed out the related programming language/framework is Haskell, Node.js, Rust, PHP, yt-dlp when handle the command parameter. MetaDefender ICAP Server is developed by C++ on Qt framework therefore not affected by this CVE

CVE-2018-15133

CVE-2018-15133 is related to Laravel Framework (code by PHP), nothing is related to MetaDefender ICAP Server functionality

CVE-2023-40581

CVE-2023-40581 is related to yt-dlp which MetaDefender ICAP Server does not use so it's not affected

CVE-2024-3566

CVE-2024-3566 has pointed out the related programming language/framework is Haskell, Node.js, Rust, PHP, yt-dlp when handle the command parameter. MetaDefender ICAP Server is developed by C++ on Qt framework therefore not affected by this CVE

CVE-2024-24576

CVE-2024-24576 has pointed out the related programming language/framework is Haskell, Node.js, Rust, PHP, yt-dlp when handle the command parameter. MetaDefender ICAP Server is developed by C++ on Qt framework therefore not affected by this CVE

CVE-2024-27980

CVE-2024-27980 has pointed out the related programming language/framework is Haskell, Node.js, Rust, PHP, yt-dlp when handle the command parameter. MetaDefender ICAP Server is developed by C++ on Qt framework therefore not affected by this CVE

Support:

If Further Assistance is required, please proceed to log a support case or chat with our support engineer.


On This Page