Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2022-29167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and...

7.5CVSS7.4AI score0.01028EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/11 12:0 a.m.28 views

RHEL 8 : gjs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - angular: XSS vulnerability CVE-2021-4231 - Hawk is an HTTP authentication scheme providing mechanisms for...

7.5CVSS6.8AI score0.02029EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.30 views

RHEL 8 : gjs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - json5: Prototype Pollution in JSON5 via Parse Method CVE-2022-46175 Note that Nessus has not tested for this issue...

8.8CVSS7.6AI score0.09304EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.28 views

RHEL 9 : gjs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - json5: Prototype Pollution in JSON5 via Parse Method CVE-2022-46175 Note that Nessus has not tested for this issue...

8.8CVSS7.7AI score0.09304EPSS
Exploits1References1
OSV
OSV
added 2024/03/24 4:57 a.m.11 views

MGASA-2024-0086 Updated nodejs-hawk packages fix security vulnerability

Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse Host HTTP...

7.5CVSS6.6AI score0.01028EPSS
Exploits0References5
Debian
Debian
added 2022/12/23 9:0 a.m.22 views

[SECURITY] [DLA 3246-1] node-hawk security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3246-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb December 23, 2022 https://wiki.debian.org/LTS -...

7.5CVSS7.5AI score0.01028EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/12/23 12:0 a.m.14 views

Debian: Security Advisory (DLA-3246-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01028EPSS
Exploits0References3
Circl
Circl
added 2022/05/06 2:11 a.m.8 views

CVE-2022-29167

creationtimestamp| type| source ---|---|--- 2022-05-06 02:11:57+00:00| seen| https://t.me/cibsecurity/42069...

7.5CVSS7.2AI score0.01028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/05/06 1:59 a.m.42 views

CVE-2022-29167

A regular expression denial of service ReDoS was found in Hawk in its header parsing functionality. The issue arises from inadequate input validation in the Hawk.utils.parseHost function when processing untrusted input with regular expressions. This flaw allows an attacker to send a specially...

7.5CVSS7.1AI score0.01028EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/05/05 10:55 p.m.4 views

CVE-2022-29167 ReDoS vulnerability in header parsing in hawk

Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse Host HTTP...

7.4CVSS7.4AI score0.01028EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/05/05 10:55 p.m.29 views

CVE-2022-29167

Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse Host HTTP...

7.5CVSS7.5AI score0.01028EPSS
Exploits0
Rows per page
Query Builder