Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:DLA-3804-1

HistoryApr 30, 2024 - 12:00 a.m.

nghttp2 - security update

Vulners
Osv
nghttp2 - security update

2024-04-3000:00:00

Google

osv.dev

nghttp2

security

update

software

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.4%

JSON

Bulletin has no description

CPENameOperatorVersion
nghttp2eq1.36.0-2+deb10u1
nghttp2eq1.36.0-2
nghttp2eq1.36.0-2+deb10u2

Name	Operator	Version
nghttp2	eq	1.36.0-2+deb10u1
nghttp2	eq	1.36.0-2
nghttp2	eq	1.36.0-2+deb10u2

nessus 47

openvas 14

osv 15

rocky 6

amazon 2

fedora 3

slackware 1

cgr 1

almalinux 6

redhatcve 1

oraclelinux 6

f5 1

redhat 10

cvelist 1

mageia 1

cbl_mariner 1

veracode 1

debiancve 1

cve 1

ubuntucve 1

nvd 1

redos 1

debian 1

wolfi 1

ubuntu 2

photon 2

arista 1

thn 1

cert 1

hp 1

nessus

Fedora 39 : nghttp2 (2024-a00de83de9)

2024-04-20 00:00:00

Ubuntu 24.04 LTS : nghttp2 vulnerability (USN-6754-2)

2024-05-07 00:00:00

RHEL 9 : nghttp2 (RHSA-2024:3501)

2024-05-30 00:00:00

openvas

Fedora: Security Advisory for nghttp2 (FEDORA-2024-a00de83de9)

2024-05-27 00:00:00

Mageia: Security Advisory (MGASA-2024-0135)

2024-04-17 00:00:00

Fedora: Security Advisory for nghttp2 (FEDORA-2024-ec22e51ec2)

2024-05-27 00:00:00

osv

Moderate: nghttp2 security update

2024-06-14 14:00:33

Moderate: nghttp2 security update

2024-05-30 00:00:00

CVE-2024-28182

2024-04-04 15:15:38

rocky

nghttp2 security update

2024-06-14 14:00:33

nodejs:18 security update

2024-05-09 18:50:42

nodejs:18 security update

2024-05-09 18:51:51

amazon

Important: nghttp2

2024-05-09 17:43:00

Important: nghttp2

2024-04-24 22:15:00

fedora

[SECURITY] Fedora 38 Update: nghttp2-1.52.0-3.fc38

2024-04-20 02:14:40

[SECURITY] Fedora 39 Update: nghttp2-1.55.1-5.fc39

2024-04-20 01:03:28

[SECURITY] Fedora 40 Update: nghttp2-1.59.0-3.fc40

2024-04-19 21:41:43

slackware

[slackware-security] nghttp2

2024-04-04 19:17:04

cgr

CVE-2024-28182 vulnerabilities

2024-05-19 03:07:16

almalinux

Moderate: nghttp2 security update

2024-05-30 00:00:00

Important: nodejs:20 security update

2024-05-15 00:00:00

Important: nodejs security update

2024-05-20 00:00:00

redhatcve

CVE-2024-28182

2024-04-03 19:27:34

oraclelinux

nghttp2 security update

2024-06-20 00:00:00

nodejs security update

2024-05-22 00:00:00

nodejs:20 security update

2024-05-09 00:00:00

K000139225: nghttp2 vulnerability CVE-2024-28182

2024-04-10 00:00:00

redhat

(RHSA-2024:3501) Moderate: nghttp2 security update

2024-05-30 12:07:46

(RHSA-2024:2937) Important: nodejs security update

2024-05-21 04:57:15

(RHSA-2024:3544) Important: nodejs:18 security update

2024-06-03 06:38:41

cvelist

CVE-2024-28182 Reading unbounded number of HTTP/2 CONTINUATION frames to cause excessive CPU usage

2024-04-04 14:41:36

mageia

Updated nghttp2 packages fix security vulnerability

2024-04-17 05:13:57

cbl_mariner

CVE-2024-28182 affecting package nodejs for versions less than 20.14.0-1

2024-06-21 09:32:44

veracode

Denial Of Service (DoS)

2024-04-05 10:02:12

debiancve

CVE-2024-28182

2024-04-04 15:15:38

cve

CVE-2024-28182

2024-04-04 15:15:38

ubuntucve

CVE-2024-28182

2024-04-04 00:00:00

nvd

CVE-2024-28182

2024-04-04 15:15:38

redos

ROS-20240507-08

2024-05-07 00:00:00

debian

[SECURITY] [DLA 3804-1] nghttp2 security update

2024-04-30 21:29:26

wolfi

CVE-2024-28182 vulnerabilities

2024-06-26 15:33:03

ubuntu

nghttp2 vulnerabilities

2024-04-25 00:00:00

nghttp2 vulnerability

2024-05-07 00:00:00

photon

Important Photon OS Security Update - PHSA-2024-5.0-0242

2024-04-10 00:00:00

Important Photon OS Security Update - PHSA-2024-4.0-0591

2024-04-11 00:00:00

arista

Security Advisory 0094

2024-04-05 00:00:00

thn

New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks

2024-04-04 11:15:00

cert

HTTP/2 CONTINUATION frames can be utilized for DoS attacks

2024-04-03 00:00:00

HP ThinPro 8.0 SP 9 Security Updates

2024-06-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.4%

JSON

Related for OSV:DLA-3804-1