Lucene search
K

4 matches found

F5 Networks
F5 Networks
added 2024/12/19 11:43 p.m.41 views

K000149074: ZeroMQ vulnerabilities CVE-2014-9721 and CVE-2021-20236

Security Advisory Description CVE-2014-9721 libzmq before 4.0.6 and 4.1.x before 4.1.1 allows remote attackers to conduct downgrade attacks and bypass ZMTP v3 protocol security mechanisms via a ZMTP v2 or earlier header. CVE-2021-20236 A flaw was found in the ZeroMQ server in versions before 4.3....

9.8CVSS8.7AI score0.02529EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.2 views

SUSE CVE-2021-20236

A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as...

9.8CVSS7AI score0.01602EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2021/06/09 3:50 a.m.28 views

CVE-2021-20236 affecting package zeromq 4.3.2-2

CVE-2021-20236 affecting package zeromq 4.3.2-2. An upgraded version of the package is available that resolves this issue...

9.8CVSS7.4AI score0.01602EPSS
Exploits0
CVE
CVE
added 2021/05/28 10:42 a.m.183 views

CVE-2021-20236

CVE-2021-20236 affects the ZeroMQ server (libzmq) prior to version 4.3.3. A crafted topic subscription request followed by unsubscribe can trigger a stack-based overflow on the server, impacting confidentiality, integrity, and availability. The vulnerability is confirmed across multiple sources (...

9.8CVSS9.2AI score0.01602EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder