Lucene search
K

17 matches found

OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.17 views

Fedora: Security Advisory (FEDORA-2024-b1e16b4335)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.94615EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.25 views

Fedora: Security Advisory (FEDORA-2024-111a8a624b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.94615EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.25 views

Fedora 40 : trafficserver (2024-111a8a624b)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-111a8a624b advisory. Update to upstream 9.2.4, resolves CVE-2024-31309 CONTINUATION frames DoS Tenable has extracted the preceding description block directly from the...

7.5CVSS8AI score0.94615EPSS
Exploits1References2
Debian
Debian
added 2024/04/28 8:55 p.m.49 views

[SECURITY] [DLA 3799-1] trafficserver security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3799-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk April 28, 2024 https://wiki.debian.org/LTS -...

7.5CVSS7.5AI score0.94615EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.20 views

Debian dla-3799 : trafficserver - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3799 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3799-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS7.8AI score0.94615EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/04/14 12:0 a.m.29 views

Debian dsa-5659 : trafficserver - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5659 advisory. - HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 a...

7.5CVSS7.9AI score0.94615EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/04/12 12:0 a.m.22 views

Fedora 39 : trafficserver (2024-b1e16b4335)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b1e16b4335 advisory. Update to upstream 9.2.4, resolves CVE-2024-31309 CONTINUATION frames DoS Tenable has extracted the preceding description block directly from the...

7.5CVSS8AI score0.94615EPSS
Exploits1References2
NVD
NVD
added 2024/04/10 12:15 p.m.26 views

CVE-2024-31309

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting proxy.config.http2.maxcontinuationframesperminute to limit the number of CONTINUATION frames...

7.5CVSS6.2AI score0.94615EPSS
Exploits1References8
UbuntuCve
UbuntuCve
added 2024/04/10 12:15 p.m.39 views

CVE-2024-31309

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting proxy.config.http2.maxcontinuationframesperminute to limit the number of CONTINUATION frames...

7.5CVSS7.2AI score0.94615EPSS
Exploits1References5
OSV
OSV
added 2024/04/10 12:15 p.m.7 views

UBUNTU-CVE-2024-31309

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting proxy.config.http2.maxcontinuationframesperminute to limit the number of CONTINUATION frames...

7.5CVSS7.3AI score0.94615EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2024/04/10 12:7 p.m.30 views

CVE-2024-31309 Apache Traffic Server: HTTP/2 CONTINUATION frames can be utilized for DoS attack

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting proxy.config.http2.maxcontinuationframesperminute to limit the number of CONTINUATION frames...

6.7AI score0.94615EPSS
Exploits1References7
OSV
OSV
added 2024/04/10 12:7 p.m.10 views

CVE-2024-31309 Apache Traffic Server: HTTP/2 CONTINUATION frames can be utilized for DoS attack

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting proxy.config.http2.maxcontinuationframesperminute to limit the number of CONTINUATION frames...

7.5CVSS7.3AI score0.94615EPSS
Exploits1References10
AlpineLinux
AlpineLinux
added 2024/04/10 12:7 p.m.20 views

CVE-2024-31309

HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. Users can set a new setting proxy.config.http2.maxcontinuationframesperminute to limit the number of CONTINUATION frames...

7.5CVSS7.7AI score0.94615EPSS
Exploits1
CVE
CVE
added 2024/04/10 12:7 p.m.5566 views

CVE-2024-31309

CVE-2024-31309 affects Apache Traffic Server (ATS) HTTP/2 CONTINUATION handling. A DoS can occur due to CONTINUATION frame floods, impacting ATS 8.0.0–8.1.9 and 9.0.0–9.2.3. Upstream fixes are in 8.1.10 and 9.2.4. Practical mitigation includes setting proxy.config.http2.max_continuation_frames_pe...

7.5CVSS7.5AI score0.94615EPSS
Exploits1References8Affected Software1
F5 Networks
F5 Networks
added 2024/04/09 3:36 p.m.38 views

K000139236: Apache Traffic Server HTTP/2 CONTINUATION DoS attack vulnerability CVE-2024-31309

Security Advisory Description HTTP/2 CONTINUATION DoS attack can cause Apache Traffic Server to consume more resources on the server. Version from 8.0.0 through 8.1.9, from 9.0.0 through 9.2.3 are affected. CVE-2024-31309 Impact There is no impact; F5 products are not affected by this...

7.5CVSS8AI score0.94615EPSS
Exploits1
Circl
Circl
added 2024/04/09 8:14 a.m.7 views

CVE-2024-31309

creationtimestamp| type| source ---|---|--- 2024-04-09 08:14:27+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/6990 2024-04-09 15:41:27+00:00| published-proof-of-concept| https://t.me/proxybar/1998 2024-04-12 10:05:59+00:00| seen| https://t.me/arpsyndicate/4585...

7.5CVSS7.3AI score0.94615EPSS
Exploits1References3
Arista
Arista
added 2024/04/03 12:0 a.m.124 views

Security Advisory 0094

Security Advisory 0094 PDF Date: April 5, 2024 Revision | Date | Changes ---|---|--- 1.0 | April 3, 2024 | Initial release 1.1 | April 5, 2024 | Update required configuration for exploitation and mitigation Description Arista Networks is providing this security update in response to the following...

8.2CVSS8AI score0.94615EPSS
Exploits4
Rows per page
Query Builder