Lucene search
F5F5:K000139611HistoryMay 29, 2024 - 12:00 a.m.
K000139611: NGINX HTTP/3 QUIC vulnerability CVE-2024-31079
2024-05-2900:00:00
my.f5.com
10
nginx
http/3
quic
vulnerability
worker processes
denial-of-service
remote attacker
unauthenticated
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
7.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
Security Advisory Description
When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacker has no visibility and limited influence over. (CVE-2024-31079)
Note: This issue affects NGINX systems compiled with thengx_http_v3_modulemodule, where the configuration contains alistendirective with thequic option enabled. The HTTP/3 QUIC module is considered an experimental feature and is not compiled by default in NGINX OSS, but it is compiled by default in NGINX Plus. For more information, refer to Support for QUIC and HTTP/3. Additionally, because users control their own custom build environments, certain security measures may not be implemented in the users’ build configurations. These security measures may include memory-related build and system configuration options. Consequently, the severity of the impact depends on whether users build the software with or without security options or utilize pre-built binaries, which include security protections by default.
Impact
Client traffic may be disrupted while the worker process restarts. This vulnerability allows a remote unauthenticated attacker to cause a denial-of-service (DoS) or other potential impact. There is no control plane exposure; this is a data plane issue only.
Affected configurations
Node
f5big-ip_nextMatch20.0.1
ORf5big-ip_nextMatch20.0.2
ORf5big-ip_nextMatch20.1.0
ORf5big-ip_nextMatch20.1.1
ORf5big-ip_nextMatch20.2.0
ORf5big-ip_nextMatch1.1.0
ORf5big-ip_nextMatch1.1.1
ORf5big-ip_nextMatch1.2.0
ORf5big-ip_nextMatch1.2.1
ORf5big-ip_nextMatch1.3.0
ORf5big-ip_nextMatch1.1.0
ORf5big-ip_nextMatch1.1.1
ORf5big-ip_nextMatch1.2.0
ORf5big-ip_nextMatch1.2.1
ORf5big-ip_nextMatch1.3.0
ORf5big-ip_nextMatch1.1.0
ORf5big-ip_nextMatch1.1.1
ORf5big-ip_nextMatch1.2.0
ORf5big-ip_nextMatch1.2.1
ORf5big-ip_nextMatch1.3.0
ORf5big-ip_ltmMatch20.0.1
ORf5big-ip_ltmMatch20.0.2
ORf5big-ip_ltmMatch20.1.0
ORf5big-ip_ltmMatch20.2.0
ORf5big-ip_nextMatch1.5.0
ORf5big-ip_nextMatch1.6.0
ORf5big-ip_nextMatch1.7.0
ORf5big-ip_nextMatch1.7.1
ORf5big-ip_nextMatch1.7.2
ORf5big-ip_nextMatch1.7.3
ORf5big-ip_nextMatch1.7.4
ORf5big-ip_nextMatch1.7.5
ORf5big-ip_nextMatch1.7.6
ORf5big-ip_nextMatch1.7.7
ORf5big-ip_nextMatch1.7.8
ORf5big-ip_nextMatch1.8.0
ORf5big-ip_nextMatch1.8.2
ORf5big-ip_nextMatch1.9.0
ORf5big-ip_nextMatch1.9.1
ORf5big-ip_nextMatch20.0.1
ORf5big-ip_nextMatch20.0.2
ORf5big-ip_nextMatch20.1.0
ORf5big-ip_nextMatch20.2.0
ORf5big-ipMatch15.1.0
ORf5big-ipMatch15.1.1
ORf5big-ipMatch15.1.10
ORf5big-ipMatch15.1.2
ORf5big-ipMatch15.1.3
ORf5big-ipMatch15.1.4
ORf5big-ipMatch15.1.5
ORf5big-ipMatch15.1.6
ORf5big-ipMatch15.1.7
ORf5big-ipMatch15.1.8
ORf5big-ipMatch15.1.9
ORf5big-ip_afmMatch15.1.0
ORf5big-ip_afmMatch15.1.1
ORf5big-ip_afmMatch15.1.10
ORf5big-ip_afmMatch15.1.2
ORf5big-ip_afmMatch15.1.3
ORf5big-ip_afmMatch15.1.4
ORf5big-ip_afmMatch15.1.5
ORf5big-ip_afmMatch15.1.6
ORf5big-ip_afmMatch15.1.7
ORf5big-ip_afmMatch15.1.8
ORf5big-ip_afmMatch15.1.9
ORf5big-ip_afmMatch16.1.0
ORf5big-ip_afmMatch16.1.1
ORf5big-ip_afmMatch16.1.2
ORf5big-ip_afmMatch16.1.3
ORf5big-ip_afmMatch16.1.4
ORf5big-ip_afmMatch17.1.0
ORf5big-ip_afmMatch17.1.1
ORf5big-ip_analyticsMatch15.1.0
ORf5big-ip_analyticsMatch15.1.1
ORf5big-ip_analyticsMatch15.1.10
ORf5big-ip_analyticsMatch15.1.2
ORf5big-ip_analyticsMatch15.1.3
ORf5big-ip_analyticsMatch15.1.4
ORf5big-ip_analyticsMatch15.1.5
ORf5big-ip_analyticsMatch15.1.6
ORf5big-ip_analyticsMatch15.1.7
ORf5big-ip_analyticsMatch15.1.8
ORf5big-ip_analyticsMatch15.1.9
ORf5big-ip_analyticsMatch16.1.0
ORf5big-ip_analyticsMatch16.1.1
ORf5big-ip_analyticsMatch16.1.2
ORf5big-ip_analyticsMatch16.1.3
ORf5big-ip_analyticsMatch16.1.4
ORf5big-ip_analyticsMatch17.1.0
ORf5big-ip_analyticsMatch17.1.1
ORf5big-ip_apmMatch15.1.0
ORf5big-ip_apmMatch15.1.1
ORf5big-ip_apmMatch15.1.10
ORf5big-ip_apmMatch15.1.2
ORf5big-ip_apmMatch15.1.3
ORf5big-ip_apmMatch15.1.4
ORf5big-ip_apmMatch15.1.5
ORf5big-ip_apmMatch15.1.6
ORf5big-ip_apmMatch15.1.7
ORf5big-ip_apmMatch15.1.8
ORf5big-ip_apmMatch15.1.9
ORf5big-ip_apmMatch16.1.0
ORf5big-ip_apmMatch16.1.1
ORf5big-ip_apmMatch16.1.2
ORf5big-ip_apmMatch16.1.3
ORf5big-ip_apmMatch16.1.4
ORf5big-ip_apmMatch17.1.0
ORf5big-ip_apmMatch17.1.1
ORf5big-ip_asmMatch15.1.0
ORf5big-ip_asmMatch15.1.1
ORf5big-ip_asmMatch15.1.10
ORf5big-ip_asmMatch15.1.2
ORf5big-ip_asmMatch15.1.3
ORf5big-ip_asmMatch15.1.4
ORf5big-ip_asmMatch15.1.5
ORf5big-ip_asmMatch15.1.6
ORf5big-ip_asmMatch15.1.7
ORf5big-ip_asmMatch15.1.8
ORf5big-ip_asmMatch15.1.9
ORf5big-ip_asmMatch16.1.0
ORf5big-ip_asmMatch16.1.1
ORf5big-ip_asmMatch16.1.2
ORf5big-ip_asmMatch16.1.3
ORf5big-ip_asmMatch16.1.4
ORf5big-ip_asmMatch17.1.0
ORf5big-ip_asmMatch17.1.1
ORf5big-ip_dnsMatch15.1.0
ORf5big-ip_dnsMatch15.1.1
ORf5big-ip_dnsMatch15.1.10
ORf5big-ip_dnsMatch15.1.2
ORf5big-ip_dnsMatch15.1.3
ORf5big-ip_dnsMatch15.1.4
ORf5big-ip_dnsMatch15.1.5
ORf5big-ip_dnsMatch15.1.6
ORf5big-ip_dnsMatch15.1.7
ORf5big-ip_dnsMatch15.1.8
ORf5big-ip_dnsMatch15.1.9
ORf5big-ip_dnsMatch16.1.0
ORf5big-ip_dnsMatch16.1.1
ORf5big-ip_dnsMatch16.1.2
ORf5big-ip_dnsMatch16.1.3
ORf5big-ip_dnsMatch16.1.4
ORf5big-ip_dnsMatch17.1.0
ORf5big-ip_dnsMatch17.1.1
ORf5big-ipMatch15.1.0
ORf5big-ipMatch15.1.1
ORf5big-ipMatch15.1.10
ORf5big-ipMatch15.1.2
ORf5big-ipMatch15.1.3
ORf5big-ipMatch15.1.4
ORf5big-ipMatch15.1.5
ORf5big-ipMatch15.1.6
ORf5big-ipMatch15.1.7
ORf5big-ipMatch15.1.8
ORf5big-ipMatch15.1.9
ORf5big-ipMatch16.1.0
ORf5big-ipMatch16.1.1
ORf5big-ipMatch16.1.2
ORf5big-ipMatch16.1.3
ORf5big-ipMatch16.1.4
ORf5big-ipMatch17.1.0
ORf5big-ipMatch17.1.1
ORf5big-ip_link_controllerMatch15.1.0
ORf5big-ip_link_controllerMatch15.1.1
ORf5big-ip_link_controllerMatch15.1.10
ORf5big-ip_link_controllerMatch15.1.2
ORf5big-ip_link_controllerMatch15.1.3
ORf5big-ip_link_controllerMatch15.1.4
ORf5big-ip_link_controllerMatch15.1.5
ORf5big-ip_link_controllerMatch15.1.6
ORf5big-ip_link_controllerMatch15.1.7
ORf5big-ip_link_controllerMatch15.1.8
ORf5big-ip_link_controllerMatch15.1.9
ORf5big-ip_link_controllerMatch16.1.0
ORf5big-ip_link_controllerMatch16.1.1
ORf5big-ip_link_controllerMatch16.1.2
ORf5big-ip_link_controllerMatch16.1.3
ORf5big-ip_link_controllerMatch16.1.4
ORf5big-ip_link_controllerMatch17.1.0
ORf5big-ip_link_controllerMatch17.1.1
ORf5big-ip_ltmMatch15.1.0
ORf5big-ip_ltmMatch15.1.1
ORf5big-ip_ltmMatch15.1.10
ORf5big-ip_ltmMatch15.1.2
ORf5big-ip_ltmMatch15.1.3
ORf5big-ip_ltmMatch15.1.4
ORf5big-ip_ltmMatch15.1.5
ORf5big-ip_ltmMatch15.1.6
ORf5big-ip_ltmMatch15.1.7
ORf5big-ip_ltmMatch15.1.8
ORf5big-ip_ltmMatch15.1.9
ORf5big-ip_ltmMatch16.1.0
ORf5big-ip_ltmMatch16.1.1
ORf5big-ip_ltmMatch16.1.2
ORf5big-ip_ltmMatch16.1.3
ORf5big-ip_ltmMatch16.1.4
ORf5big-ip_ltmMatch17.1.0
ORf5big-ip_ltmMatch17.1.1
ORf5big-ip_pemMatch15.1.0
ORf5big-ip_pemMatch15.1.1
ORf5big-ip_pemMatch15.1.10
ORf5big-ip_pemMatch15.1.2
ORf5big-ip_pemMatch15.1.3
ORf5big-ip_pemMatch15.1.4
ORf5big-ip_pemMatch15.1.5
ORf5big-ip_pemMatch15.1.6
ORf5big-ip_pemMatch15.1.7
ORf5big-ip_pemMatch15.1.8
ORf5big-ip_pemMatch15.1.9
ORf5big-ip_pemMatch16.1.0
ORf5big-ip_pemMatch16.1.1
ORf5big-ip_pemMatch16.1.2
ORf5big-ip_pemMatch16.1.3
ORf5big-ip_pemMatch16.1.4
ORf5big-ip_pemMatch17.1.0
ORf5big-ip_pemMatch17.1.1
ORf5nginx_agentMatch2.17.0
ORf5nginx_agentMatch2.18.0
ORf5nginx_agentMatch2.19.0
ORf5nginx_agentMatch2.20.0
ORf5nginx_agentMatch2.20.1
ORf5nginx_agentMatch2.22.0
ORf5nginx_agentMatch2.22.1
ORf5nginx_agentMatch2.23.0
ORf5nginx_agentMatch2.23.1
ORf5nginx_agentMatch2.23.2
ORf5nginx_agentMatch2.23.3
ORf5nginx_agentMatch2.24.0
ORf5nginx_agentMatch2.24.1
ORf5nginx_agentMatch2.25.0
ORf5nginx_agentMatch2.25.1
ORf5nginx_agentMatch2.26.0
ORf5nginx_agentMatch2.26.1
ORf5nginx_agentMatch2.26.2
ORf5nginx_agentMatch2.27.0
ORf5nginx_agentMatch2.28.0
ORf5nginx_agentMatch2.28.1
ORf5nginx_agentMatch2.29.0
ORf5nginx_agentMatch2.30.0
ORf5nginx_agentMatch2.30.1
ORf5nginx_agentMatch2.30.2
ORf5nginx_agentMatch2.30.3
ORf5nginx_agentMatch2.31.0
ORf5nginx_agentMatch2.31.1
ORf5nginx_agentMatch2.31.2
ORf5nginx_agentMatch2.32.0
ORf5nginx_agentMatch2.32.1
ORf5nginx_agentMatch2.32.2
ORf5nginx_agentMatch2.33.0
ORf5nginx_agentMatch2.34.0
ORf5nginx_api_connectivity_managerMatch1.0.0
ORf5nginx_api_connectivity_managerMatch1.1.0
ORf5nginx_api_connectivity_managerMatch1.1.1
ORf5nginx_api_connectivity_managerMatch1.2.0
ORf5nginx_api_connectivity_managerMatch1.3.0
ORf5nginx_api_connectivity_managerMatch1.3.1
ORf5nginx_api_connectivity_managerMatch1.4.0
ORf5nginx_api_connectivity_managerMatch1.4.1
ORf5nginx_api_connectivity_managerMatch1.5.0
ORf5nginx_api_connectivity_managerMatch1.6.0
ORf5nginx_api_connectivity_managerMatch1.7.0
ORf5nginx_api_connectivity_managerMatch1.8.0
ORf5nginx_api_connectivity_managerMatch1.9.0
ORf5nginx_api_connectivity_managerMatch1.9.1
ORf5nginx_api_connectivity_managerMatch1.9.2
ORf5nginx_app_protectMatch2.4.0
ORf5nginx_app_protectMatch3.0.0
ORf5nginx_app_protectMatch3.1.0
ORf5nginx_app_protectMatch4.0.1
ORf5nginx_app_protectMatch4.1.0
ORf5nginx_app_protectMatch4.2.0
ORf5nginx_app_protectMatch4.3.0
ORf5nginx_app_protectMatch4.4.0
ORf5nginx_app_protectMatch3.11.0
ORf5nginx_app_protectMatch3.12.1
ORf5nginx_app_protectMatch3.12.2
ORf5nginx_app_protectMatch4.0.0
ORf5nginx_app_protectMatch4.1.0
ORf5nginx_app_protectMatch4.10.0
ORf5nginx_app_protectMatch4.2.0
ORf5nginx_app_protectMatch4.3.0
ORf5nginx_app_protectMatch4.4.0
ORf5nginx_app_protectMatch4.5.0
ORf5nginx_app_protectMatch4.6.0
ORf5nginx_app_protectMatch4.7.0
ORf5nginx_app_protectMatch4.8.0
ORf5nginx_app_protectMatch4.8.1
ORf5nginx_app_protectMatch4.9.0
ORf5nginx_app_protectMatch5.0.0
ORf5nginx_app_protectMatch5.1.0
ORf5nginx_app_protectMatch5.2.0
ORf5nginx_controllerMatch3.18.3
ORf5nginx_controllerMatch3.19.1-APIM
ORf5nginx_controllerMatch3.19.2-APIM
ORf5nginx_controllerMatch3.19.3-APIM
ORf5nginx_controllerMatch3.19.4-APIM
ORf5nginx_controllerMatch3.19.5-APIM
ORf5nginx_controllerMatch3.19.6-APIM
ORf5nginx_controllerMatch3.20.0
ORf5nginx_controllerMatch3.20.1
ORf5nginx_controllerMatch3.21.0
ORf5nginx_controllerMatch3.22.0
ORf5nginx_controllerMatch3.22.1
ORf5nginx_controllerMatch3.22.2
ORf5nginx_controllerMatch3.22.3
ORf5nginx_controllerMatch3.22.4
ORf5nginx_controllerMatch3.22.5
ORf5nginx_controllerMatch3.22.6
ORf5nginx_controllerMatch3.22.7
ORf5nginx_controllerMatch3.22.8
ORf5nginx_controllerMatch3.22.9
ORf5nginx_ingress_controllerMatch1.12.5
ORf5nginx_ingress_controllerMatch2.2.1
ORf5nginx_ingress_controllerMatch2.2.2
ORf5nginx_ingress_controllerMatch2.3.0
ORf5nginx_ingress_controllerMatch2.4.0
ORf5nginx_ingress_controllerMatch2.4.1
ORf5nginx_ingress_controllerMatch2.4.2
ORf5nginx_ingress_controllerMatch3.0.0
ORf5nginx_ingress_controllerMatch3.0.1
ORf5nginx_ingress_controllerMatch3.0.2
ORf5nginx_ingress_controllerMatch3.1.0
ORf5nginx_ingress_controllerMatch3.1.1
ORf5nginx_ingress_controllerMatch3.2.0
ORf5nginx_ingress_controllerMatch3.2.1
ORf5nginx_ingress_controllerMatch3.3.0
ORf5nginx_ingress_controllerMatch3.3.1
ORf5nginx_ingress_controllerMatch3.4.0
ORf5nginx_ingress_controllerMatch3.4.1
ORf5nginx_ingress_controllerMatch3.4.2
ORf5nginx_ingress_controllerMatch3.5.0
ORf5nginx_ingress_controllerMatch3.5.1
ORf5nginx_instance_managerMatch2.10.0
ORf5nginx_instance_managerMatch2.10.1
ORf5nginx_instance_managerMatch2.11.0
ORf5nginx_instance_managerMatch2.12.0
ORf5nginx_instance_managerMatch2.13.0
ORf5nginx_instance_managerMatch2.13.1
ORf5nginx_instance_managerMatch2.14.0
ORf5nginx_instance_managerMatch2.14.1
ORf5nginx_instance_managerMatch2.15.0
ORf5nginx_instance_managerMatch2.15.1
ORf5nginx_instance_managerMatch2.16.0
ORf5nginx_instance_managerMatch2.2.0
ORf5nginx_instance_managerMatch2.3.0
ORf5nginx_instance_managerMatch2.3.1
ORf5nginx_instance_managerMatch2.4.0
ORf5nginx_instance_managerMatch2.5.0
ORf5nginx_instance_managerMatch2.5.1
ORf5nginx_instance_managerMatch2.6.0
ORf5nginx_instance_managerMatch2.7.0
ORf5nginx_instance_managerMatch2.8.0
ORf5nginx_instance_managerMatch2.9.0
ORf5nginx_instance_managerMatch2.9.1
ORf5nginx_security_monitoringMatch1.0.0
ORf5nginx_security_monitoringMatch1.1.0
ORf5nginx_security_monitoringMatch1.2.0
ORf5nginx_security_monitoringMatch1.3.0
ORf5nginx_security_monitoringMatch1.4.0
ORf5nginx_security_monitoringMatch1.5.0
ORf5nginx_security_monitoringMatch1.6.0
ORf5nginx_security_monitoringMatch1.7.0
ORf5nginx_security_monitoringMatch1.7.1
ORf5nginx_plusMatchR27
ORf5nginx_plusMatchR28
ORf5nginx_plusMatchR29
ORf5nginx_plusMatchR30
ORf5nginx_plusMatchR31
ORf5nginx_plusMatchR32
ORf5nginx_service_meshMatch1.1.0
ORf5nginx_service_meshMatch1.2.0
ORf5nginx_service_meshMatch1.2.1
ORf5nginx_service_meshMatch1.3.0
ORf5nginx_service_meshMatch1.3.1
ORf5nginx_service_meshMatch1.4.0
ORf5nginx_service_meshMatch1.4.1
ORf5nginx_service_meshMatch1.5.0
ORf5nginx_service_meshMatch1.6.0
ORf5nginx_service_meshMatch1.7.0
ORf5nginx_service_meshMatch2.0.0
ORf5nginxMatch1.27.0
ORf5nginxMatch1.28.0
ORf5nginxMatch1.29.0
ORf5nginxMatch1.29.1
ORf5nginxMatch1.30.0
ORf5nginxMatch1.31.0
ORf5nginxMatch1.31.1
ORf5nginxMatch1.32.0
ORf5nginxMatch1.32.1
ORf5f5os-aMatch1.5.1
ORf5f5os-aMatch1.5.2
ORf5f5os-aMatch1.7.0
ORf5f5os-cMatch1.6.0
ORf5f5os-cMatch1.6.1
ORf5f5os-cMatch1.6.2
ORf5big-iq_centralized_managementMatch8.1.0
ORf5big-iq_centralized_managementMatch8.2.0
ORf5big-iq_centralized_managementMatch8.3.0
ORf5big-ip_ddos_hybrid_defenderMatch15.1.0
ORf5big-ip_ddos_hybrid_defenderMatch15.1.1
ORf5big-ip_ddos_hybrid_defenderMatch16.1.0
ORf5big-ip_ddos_hybrid_defenderMatch17.1.0
ORf5ssl_orchestratorMatch15.1.0
ORf5ssl_orchestratorMatch15.1.1
ORf5ssl_orchestratorMatch15.1.2
ORf5ssl_orchestratorMatch15.1.9
ORf5ssl_orchestratorMatch16.1.0
ORf5ssl_orchestratorMatch16.1.1
ORf5ssl_orchestratorMatch16.1.3
ORf5ssl_orchestratorMatch16.1.4
ORf5ssl_orchestratorMatch17.1.0
ORf5ssl_orchestratorMatch17.1.1
ORf5traffix_signaling_delivery_controllerMatch5.1.0
ORf5traffix_signaling_delivery_controllerMatch5.2.0
Related
cvelist
cvelist
CVE-2024-31079 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:04
redhatcve
redhatcve
CVE-2024-31079
2024-05-30 08:33:51
ubuntucve
ubuntucve
CVE-2024-31079
2024-05-29 00:00:00
nvd
nvd
CVE-2024-31079
2024-05-29 16:15:09
alpinelinux
alpinelinux
CVE-2024-31079
2024-05-29 16:15:09
wolfi
wolfi
CVE-2024-31079 vulnerabilities
2024-06-21 03:08:19
osv
osv
BIT-nginx-2024-31079
2024-06-04 09:50:02
CVE-2024-31079
2024-05-29 16:15:09
vulnrichment
vulnrichment
CVE-2024-31079 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:04
debiancve
debiancve
CVE-2024-31079
2024-05-29 16:15:09
nginx
nginx
Stack overflow and use-after-free in HTTP/3
2024-05-29 16:15:09
cve
cve
CVE-2024-31079
2024-05-29 16:15:09
nessus
nessus
Fedora 39 : nginx (2024-2e4858330c)
2024-06-08 00:00:00
FreeBSD : nginx-devel -- Multiple Vulnerabilities in HTTP/3 (320a19f7-1ddd-11ef-a2ae-8c164567ca3c)
2024-05-30 00:00:00
Fedora 40 : nginx (2024-06e6dcbb42)
2024-06-08 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: nginx-1.26.1-1.fc39
2024-06-08 19:35:25
[SECURITY] Fedora 40 Update: nginx-1.26.1-1.fc40
2024-06-08 05:23:22
openvas
openvas
Fedora: Security Advisory for nginx (FEDORA-2024-2e4858330c)
2024-06-09 00:00:00
Fedora: Security Advisory for nginx (FEDORA-2024-06e6dcbb42)
2024-06-09 00:00:00
Nginx 1.25.0 - 1.26.0 Multiple HTTP/3 Vulnerabilities
2024-05-31 00:00:00
freebsd
freebsd
nginx -- Multiple Vulnerabilities in HTTP/3
2024-05-29 00:00:00
f5
f5
K000139628: Out-of-band Security Notification (May 29, 2024)
2024-05-29 00:00:00
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
7.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
Related for F5:K000139611