Lucene search

CVE-2018-1000168

🗓️ 08 May 2018 15:00:29Reported by mitreType

nghttp2 v1.10.0-v1.31.0 Improper Input Validation vulnerability

Reporter	Title	Published	Views	Family All 66
OpenVAS	Node.js Denial-of-Service Vulnerability - 02 - Mac OS X	10 Jul 201800:00	–	openvas
OpenVAS	nghttp2 < 1.31.1 DoS Vulnerability	16 Apr 201800:00	–	openvas
OpenVAS	Fedora Update for nghttp2 FEDORA-2018-cec96a9c41	21 Apr 201800:00	–	openvas
OpenVAS	Node.js Denial-of-Service Vulnerability - 02 - Windows	9 Jul 201800:00	–	openvas
OpenVAS	Debian: Security Advisory (DLA-2786-1)	18 Oct 202100:00	–	openvas
OpenVAS	openSUSE: Security Advisory for nodejs8 (openSUSE-SU-2018:1963-1)	26 Oct 201800:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2018:1918-1)	9 Jun 202100:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2021:0932-1)	19 Apr 202100:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2019:14246-1)	9 Jun 202100:00	–	openvas
RedhatCVE	CVE-2018-1000168	25 Oct 201906:31	–	redhatcve

Nvd

Node

nghttp2 nghttp2Range1.10.0–1.31.0

Node

nodejs node.jsRange6.0.0–6.8.1-

nodejs node.jsRange8.4.0–8.17.0lts

nodejs node.jsRange9.0.0–9.11.2

nodejs node.jsRange10.0.0–10.4.1-

Node

debian debian_linuxMatch9.0

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2021/10/msg00011.html
securityfocus	www.securityfocus.com/bid/103952
access	www.access.redhat.com/errata/RHSA-2019:0367
nghttp2	www.nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/
nodejs	www.nodejs.org/en/blog/vulnerability/june-2018-security-releases/
access	www.access.redhat.com/errata/RHSA-2019:0366

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 May 2018 15:29Current

6.4Medium risk

Vulners AI Score6.4

CVSS25

CVSS37.5

EPSS0.08