Lucene search
FreeBSD320A19F7-1DDD-11EF-A2AE-8C164567CA3CHistoryMay 29, 2024 - 12:00 a.m.
nginx -- Multiple Vulnerabilities in HTTP/3
2024-05-2900:00:00
vuxml.freebsd.org
12
nginx
http/3
vulnerabilities
stack overflow
buffer overwrite
memory disclosure
null pointer dereference
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
AI Score
5.6
Confidence
High
EPSS
0
Percentile
15.5%
The nginx development team reports:
This update fixes the following vulnerabilities:
Stack overflow and use-after-free in HTTP/3
Buffer overwrite in HTTP/3
Memory disclosure in HTTP/3
NULL pointer dereference in HTTP/3
Related
nessus
nessus
Fedora 40 : nginx (2024-06e6dcbb42)
2024-06-08 00:00:00
FreeBSD : nginx-devel -- Multiple Vulnerabilities in HTTP/3 (320a19f7-1ddd-11ef-a2ae-8c164567ca3c)
2024-05-30 00:00:00
Fedora 39 : nginx (2024-2e4858330c)
2024-06-08 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: nginx-1.26.1-1.fc40
2024-06-08 05:23:22
[SECURITY] Fedora 39 Update: nginx-1.26.1-1.fc39
2024-06-08 19:35:25
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-06e6dcbb42)
2024-06-09 00:00:00
Fedora: Security Advisory (FEDORA-2024-2e4858330c)
2024-06-09 00:00:00
Nginx 1.25.0 - 1.26.0 Multiple HTTP/3 Vulnerabilities
2024-05-31 00:00:00
f5
f5
K000139628: Out-of-band Security Notification (May 29, 2024)
2024-05-29 00:00:00
K000139627: NGINX HTTP/3 QUIC vulnerability CVE-2024-34161
2024-05-29 00:00:00
K000139611: NGINX HTTP/3 QUIC vulnerability CVE-2024-31079
2024-05-29 00:00:00
ibm
ibm
redos
redos
ROS-20240725-01
2024-07-25 00:00:00
ROS-20240702-07
2024-07-02 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2024-4.0-0638
2024-06-24 00:00:00
Critical Photon OS Security Update - PHSA-2024-5.0-0302
2024-06-24 00:00:00
osv
osv
BIT-nginx-2024-35200
2024-06-04 09:49:17
CGA-ccx3-v5fh-7h28
2024-07-15 21:55:49
CGA-892f-833w-gf4w
2024-07-15 21:52:57
nvd
nvd
hackerone
hackerone
Internet Bug Bounty: CVE-2024-35200 in nginx
2024-05-30 09:19:50
Internet Bug Bounty: CVE-2024-31079 in nginx
2024-05-30 09:27:43
Internet Bug Bounty: CVE-2024-32760 in nginx
2024-05-30 09:25:02
alpinelinux
alpinelinux
ubuntucve
ubuntucve
nginx
nginx
NULL pointer dereference in HTTP/3
2024-05-29 16:15:10
Memory disclosure in HTTP/3
2024-05-29 16:15:10
Buffer overwrite in HTTP/3
2024-05-29 16:15:10
cvelist
cvelist
CVE-2024-31079 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:04
CVE-2024-35200 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:05
CVE-2024-34161 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:05
redhatcve
redhatcve
debiancve
debiancve
vulnrichment
vulnrichment
CVE-2024-31079 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:04
CVE-2024-35200 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:05
CVE-2024-34161 NGINX HTTP/3 QUIC vulnerability
2024-05-29 16:02:05
wolfi
wolfi
CVE-2024-35200 vulnerabilities
2024-09-28 03:12:03
CVE-2024-34161 vulnerabilities
2024-09-28 03:12:03
CVE-2024-31079 vulnerabilities
2024-09-28 03:12:03
cve
cve
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
AI Score
5.6
Confidence
High
EPSS
0
Percentile
15.5%
Related for 320A19F7-1DDD-11EF-A2AE-8C164567CA3C