Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2023/06/12 12:0 a.m.17 views

Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : SNI Proxy vulnerability (USN-6148-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 host has a package installed that is affected by a vulnerability as referenced in the USN-6148-1 advisory. It was discovered that SNI Proxy did not properly handle wildcard backend hosts. An attacker could possibly use this issue to caus...

9.8CVSS8.7AI score0.65515EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/05/27 12:0 a.m.18 views

Debian DSA-5413-1 : sniproxy - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5413 advisory. An issue has been found in sniproxy, a transparent TLS and HTTP layer 4 proxy with SNI support. Due to bad handling of wildcard backend hosts, a crafted HTTP or TLS packet...

9.8CVSS8.3AI score0.65515EPSS
Exploits1References6
Debian
Debian
added 2023/05/26 1:19 p.m.17 views

[SECURITY] [DSA 5413-1] sniproxy security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5413-1 [email protected] https://www.debian.org/security/ Thorsten Alteholz May 26, 2023 https://www.debian.org/security/faq -...

9.8CVSS6.8AI score0.65515EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/05/22 12:0 a.m.11 views

Mageia: Security Advisory (MGASA-2023-0178)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.65515EPSS
Exploits1References4
Mageia
Mageia
added 2023/05/21 8:42 a.m.35 views

Updated sniproxy packages fix security vulnerability

A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to trigger this vulnerability. CVE-2023-25076...

9.8CVSS7.9AI score0.65515EPSS
Exploits1References2
Circl
Circl
added 2023/03/30 6:32 p.m.4 views

CVE-2023-25076

creationtimestamp| type| source ---|---|--- 2023-03-30 18:32:54+00:00| seen| https://t.me/cibsecurity/61175 2026-06-23 17:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3moxwumd3pb2r...

9.8CVSS7.3AI score0.65515EPSS
Exploits1References2
OSV
OSV
added 2023/03/30 3:15 p.m.9 views

CVE-2023-25076

A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit: 822bb80df9b7b345cc9eba55df74a07b498819ba. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to...

9.8CVSS10AI score
Exploits0References5
NVD
NVD
added 2023/03/30 3:15 p.m.8 views

CVE-2023-25076

A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit: 822bb80df9b7b345cc9eba55df74a07b498819ba. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to...

9.8CVSS9.7AI score0.65515EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2023/03/30 2:34 p.m.9 views

CVE-2023-25076

A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit: 822bb80df9b7b345cc9eba55df74a07b498819ba. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to...

9.8CVSS8.2AI score0.65515EPSS
Exploits1References4
CVE
CVE
added 2023/03/30 2:34 p.m.62 views

CVE-2023-25076

CVE-2023-25076 affects sniproxy: a buffer overflow in the handling of wildcard backend hosts can allow arbitrary code execution via crafted HTTP or TLS packets. Impact observed in SNIProxy 0.6.0-2 and the master branch. Exploitation details are not provided in the Initial description, but multipl...

9.8CVSS9.5AI score0.65515EPSS
Exploits1References5Affected Software1
Talos
Talos
added 2023/03/30 12:0 a.m.22 views

SNIProxy wildcard backend hosts buffer overflow vulnerability

Talos Vulnerability Report TALOS-2023-1731 SNIProxy wildcard backend hosts buffer overflow vulnerability March 30, 2023 CVE Number CVE-2023-25076 SUMMARY A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit:...

9.8CVSS9.8AI score0.65515EPSS
Exploits1
Rows per page
Query Builder