Lucene search
K

284 matches found

OSV
OSV
added 2025/11/06 12:58 p.m.5 views

BIT-GOLANG-2025-58189 ALPN negotiation error contains attacker controlled information in crypto/tls

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled information the ALPN protocols sent by the client which is not escaped...

5.3CVSS6.5AI score0.00443EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2025/10/31 1:9 a.m.8 views

ALPN negotiation error contains attacker controlled information in crypto/tls

...

7.5CVSS7AI score0.00443EPSS
Exploits0
NVD
NVD
added 2025/10/29 11:16 p.m.7 views

CVE-2025-58189

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled information the ALPN protocols sent by the client which is not escaped...

5.3CVSS0.00443EPSS
Exploits0References5
OSV
OSV
added 2025/10/29 11:16 p.m.6 views

AZL-78917 CVE-2025-58189 affecting package golang 1.25.7-1

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled information the ALPN protocols sent by the client which is not escaped...

5.3CVSS7.2AI score0.00443EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/29 10:10 p.m.5 views

CVE-2025-58189 ALPN negotiation error contains attacker controlled information in crypto/tls

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled information the ALPN protocols sent by the client which is not escaped...

6.3AI score0.00443EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/10/29 10:10 p.m.3 views

CVE-2025-58189

When Conn.Handshake fails during ALPN negotiation the error contains attacker controlled information the ALPN protocols sent by the client which is not escaped...

5.3CVSS8.1AI score0.00443EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.3 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google USA. A security vulnerability exists in Google Go that stems from an error message not escaping attacker-controlled data when ALPN negotiation fails, which could lead to informatio...

5.3CVSS6.1AI score0.00443EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/10/22 11:23 p.m.6 views

SUSE CVE-2025-62409

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

7.5CVSS7AI score0.00425EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/16 6:43 p.m.3 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the flow control management process while overriding onAboveWriteBufferHighWatermark and onBelowWriteBufferLowWatermark callbacks. An attacker can cause a crash of the TCP connection pool by sending large...

8.7CVSS7.1AI score0.00425EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-4540

Malware in sbrugna...

7.8CVSS6.4AI score0.02609EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-1063

Malware in sbrugna...

8.6CVSS8.6AI score0.0386EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-4541

Malware in sbrugna...

7.8CVSS6.4AI score0.01911EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-16178

Malware in sbrugna...

7.5CVSS7.5AI score0.01766EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0875

Malware in sbrugna...

7.5CVSS6.7AI score0.01594EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2016-2375

Malware in sbrugna...

7.1CVSS5.9AI score0.02111EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-4246

Malware in sbrugna...

8.6CVSS8.3AI score0.01973EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-14253

Malware in sbrugna...

5.9CVSS5.8AI score0.00475EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3763

Malware in sbrugna...

6.8CVSS6.4AI score0.02042EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-2151

Malware in sbrugna...

7.1CVSS7.8AI score0.01683EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-26922

Malware in sbrugna...

7.4CVSS7.5AI score0.02037EPSS
Exploits0References8
Rows per page
Query Builder