Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2026/07/02 12:3 a.m.6 views

netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake

A flaw was found in Netty, a network application framework. A remote attacker can exploit this vulnerability by sending a crafted TLS Transport Layer Security ClientHello message. This can lead to an eager allocation of a large memory buffer, causing a Denial of Service DoS due to excessive memor...

7.5CVSS6AI score0.00461EPSS
Exploits0References7
OSV
OSV
added 2024/01/24 6:15 p.m.5 views

CVE-2021-42143

An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop bug exists during the handling of a ClientHello handshake message. This bug allows remote attackers to cause a denial of service by sending a malformed ClientHello handshake message with an odd length o...

9.1CVSS6AI score0.00812EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/09/25 7:16 p.m.7 views

nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello

A flaw was found in the way NSS responded to an SSLv2-compatible ClientHello with a ServerHello that had an all-zero random. A man-in-the-middle attacker could use this flaw in a passive replay attack...

5.9CVSS7.1AI score0.01496EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.5 views

The vulnerability of Cisco ASA software allows a malicious individual to execute arbitrary code.

The vulnerability exists in the function dtls1reassemblefragment in d1both.c in OpenSSL, due to incorrect checking of the length of fragments in DTLS ClientHello messages. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure buffer overflow and...

10CVSS7.4AI score0.99977EPSS
Exploits4References12
Rows per page
Query Builder