Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

FedoraFEDORA:9084B6049CB5

HistoryFeb 23, 2020 - 1:09 a.m.

[SECURITY] Fedora 30 Update: nghttp2-1.40.0-1.fc30

2020-02-2301:09:35

lists.fedoraproject.org

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

This package contains the HTTP/2 client, server and proxy programs.

OSVersionArchitecturePackageVersionFilename
Fedora30anynghttp2< 1.40.0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	30	any	nghttp2	< 1.40.0	UNKNOWN

openvas 30

oraclelinux 10

nessus 64

mageia 3

hackerone 1

osv 10

amazon 5

fedora 8

debiancve 2

centos 1

cloudfoundry 1

veracode 2

redhat 10

redhatcve 2

github 1

prion 3

alpinelinux 2

cve 3

cbl_mariner 1

ubuntucve 2

symantec 1

mscve 1

nginx 1

debian 2

ibm 17

suse 3

archlinux 2

freebsd 3

photon 2

nodejsblog 1

altlinux 2

rocky 2

almalinux 1

openvas

Fedora: Security Advisory for nghttp2 (FEDORA-2020-47efc31973)

2020-02-23 00:00:00

Fedora: Security Advisory for nghttp2 (FEDORA-2020-3838c8ea98)

2020-02-09 00:00:00

Mageia: Security Advisory (MGASA-2020-0131)

2022-01-28 00:00:00

oraclelinux

http-parser security update

2020-03-06 00:00:00

http-parser security update

2020-03-06 00:00:00

nghttp2 security update

2019-09-10 00:00:00

nessus

RHEL 7 : http-parser (RHSA-2020:0703)

2020-03-06 00:00:00

NewStart CGSL CORE 5.05 / MAIN 5.05 : http-parser Vulnerability (NS-SA-2020-0119)

2020-12-09 00:00:00

CentOS 7 : http-parser (CESA-2020:0703)

2020-03-06 00:00:00

mageia

Updated http-parser packages fix security vulnerability

2020-03-09 01:37:31

Updated nghttp2 packages fix security vulnerabilities

2019-09-28 04:05:09

Updated nginx packages fix security vulnerabilities

2019-11-30 16:06:06

hackerone

Node.js: HTTP request smuggling using malformed Transfer-Encoding header

2019-11-12 01:11:47

osv

SwiftNIO vulnerable to HTTP request smuggling using malformed Transfer-Encoding header

2023-05-18 17:29:43

CVE-2019-15605

2020-02-07 15:15:11

CVE-2019-9511

2019-08-13 21:15:12

amazon

Important: http-parser

2020-05-05 01:12:00

Important: nghttp2

2019-09-30 21:03:00

Important: nghttp2

2019-10-08 21:43:00

fedora

[SECURITY] Fedora 30 Update: libuv-1.34.2-1.fc30

2020-02-23 01:09:35

[SECURITY] Fedora 31 Update: libuv-1.34.2-1.fc31

2020-02-09 01:33:55

[SECURITY] Fedora 31 Update: nodejs-12.15.0-1.fc31

2020-02-09 01:33:56

debiancve

CVE-2019-15605

2020-02-07 15:15:00

CVE-2019-9511

2019-08-13 21:15:00

centos

http security update

2020-03-04 21:38:41

cloudfoundry

CVE-2019-15605: Node.js is vulnerable to request smuggling | Cloud Foundry

2020-03-09 00:00:00

veracode

HTTP Request Smuggling

2020-02-10 08:28:35

Denial Of Service (DoS)

2019-09-13 00:40:24

redhat

(RHSA-2020:0703) Important: http-parser security update

2020-03-04 11:36:06

(RHSA-2020:1510) Important: http-parser security update

2020-04-21 09:11:37

(RHSA-2020:0708) Important: http-parser security update

2020-03-04 17:01:56

redhatcve

CVE-2019-15605

2020-04-06 04:56:12

CVE-2019-9511

2020-11-01 17:54:29

github

SwiftNIO vulnerable to HTTP request smuggling using malformed Transfer-Encoding header

2023-05-18 17:29:43

prion

Design/Logic Flaw

2020-02-07 15:15:00

Code injection

2019-08-13 21:15:00

Code injection

2019-09-11 15:15:00

alpinelinux

CVE-2019-15605

2020-02-07 15:15:00

CVE-2019-9511

2019-08-13 21:15:00

cve

CVE-2019-15605

2020-02-07 15:15:00

CVE-2019-9511

2019-08-13 21:15:00

CVE-2019-3643

2019-09-11 15:15:00

cbl_mariner

CVE-2019-9511 affecting package nginx 1.16.1-2

2021-06-14 15:32:58

ubuntucve

CVE-2019-15605

2020-02-07 00:00:00

CVE-2019-9511

2019-08-13 00:00:00

symantec

Microsoft Windows 'HTTP.sys' CVE-2019-9511 Denial of Service Vulnerability

2019-08-13 00:00:00

mscve

HTTP/2 Server Denial of Service Vulnerability

2019-08-13 07:00:00

nginx

Excessive CPU usage in HTTP/2 with small window updates

2019-08-13 21:15:00

debian

[SECURITY] [DSA 4669-1] nodejs security update

2020-04-29 21:05:57

[SECURITY] [DSA 4511-1] nghttp2 security update

2019-09-01 21:08:06

ibm

Security Bulletin: Multiple potential vulnerabilities in Node.js

2020-06-19 18:20:26

Security Bulletin: IBM DataPower Gateway affected by multiple CVEs in Node.js

2021-06-08 22:33:53

Security Bulletin: Multiple vulnerabilities affect IBM® SDK for Node.js™ in IBM Cloud

2020-03-17 19:29:24

suse

Security update for nghttp2 (moderate)

2019-10-01 00:00:00

Security update for nghttp2 (moderate)

2019-10-01 00:00:00

Security update for nodejs8 (important)

2020-03-03 00:00:00

archlinux

[ASA-201908-17] libnghttp2: denial of service

2019-08-27 00:00:00

[ASA-201908-12] nginx-mainline: denial of service

2019-08-16 00:00:00

freebsd

nghttp2 -- multiple vulnerabilities

2019-08-13 00:00:00

Node.js -- multiple vulnerabilities

2020-02-06 00:00:00

NGINX -- Multiple vulnerabilities

2019-08-13 00:00:00

photon

Critical Photon OS Security Update - PHSA-2020-0060

2020-02-23 00:00:00

Important Photon OS Security Update - PHSA-2023-4.0-0342

2023-02-28 00:00:00

nodejsblog

February 2020 Security Releases

2020-02-06 00:00:00

altlinux

Security fix for the ALT Linux 10 package node version 13.8.0-alt1

2020-02-11 00:00:00

Security fix for the ALT Linux 9 package node version 13.8.0-alt1

2020-02-11 00:00:00

rocky

nodejs:12 security update

2020-02-25 13:06:23

nginx:1.14 security update

2019-09-17 08:45:10

almalinux

Important: nodejs:12 security update

2020-02-25 13:06:23

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Related for FEDORA:9084B6049CB5