Lucene search
K

6 matches found

OSV
OSV
added 2026/04/23 10:16 p.m.3 views

UBUNTU-CVE-2026-2708

A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soupmessageheadersappendcommon function in libsoup/soup-message-headers.c unconditionally appends each header value without validating for duplicate or conflicting Content-Length fields. This allows an attacker...

5.3CVSS5.8AI score0.00321EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/23 9:51 p.m.3 views

CVE-2026-2708

A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soupmessageheadersappendcommon function in libsoup/soup-message-headers.c unconditionally appends each header value without validating for duplicate or conflicting Content-Length fields. This allows an attacker...

3.7CVSS5.7AI score0.00321EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2026/04/23 9:51 p.m.9 views

CVE-2026-2708

A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soupmessageheadersappendcommon function in libsoup/soup-message-headers.c unconditionally appends each header value without validating for duplicate or conflicting Content-Length fields. This allows an attacker...

5.3CVSS5.2AI score0.00321EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.5 views

SUSE SLED15: libsoup-3_0-0 / libsoup-3_0-0-32bit / libsoup-devel / etc (SUSE-SU-2026:0690-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0690-1 advisory. - CVE-2025-32049: denial of Service attack to websocket server bsc1240751. - CVE-2026-2369: buff...

9.1CVSS6.9AI score0.00728EPSS
Exploits1References13
OPENSUSE Linux
OPENSUSE Linux
added 2026/02/25 12:0 a.m.2 views

libsoup-2_4-1-2.74.3-17.1 on GA media (moderate)

libsoup-24-1-2.74.3-17.1 on GA media Announcement ID: openSUSE-SU-2026:10246-1 Rating: moderate Cross-References: CVE-2026-2708 CVSS scores: CVE-2026-2708 SUSE : 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N CVE-2026-2708 SUSE : 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA...

8.3CVSS5.5AI score0.00321EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-2708

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soupmessageheadersappendcommon function in libsoup/soup-message-headers.c...

5.3CVSS5.8AI score0.00321EPSS
Exploits1References4
Rows per page
Query Builder