Lucene search
+L

15 matches found

OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2024:4401-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.00576EPSS
Exploits1References5
OSV
OSV
added 2024/12/30 1:23 p.m.15 views

SUSE-SU-2024:4436-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00576EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/12/28 12:0 a.m.14 views

SUSE SLES15 Security Update : python-grpcio (SUSE-SU-2024:4428-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4428-1 advisory. - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by...

7.5CVSS6.7AI score0.00576EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/12/28 12:0 a.m.16 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-grpcio (SUSE-SU-2024:4429-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4429-1 advisory. - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 -...

7.5CVSS6.7AI score0.00576EPSS
Exploits1References7
OSV
OSV
added 2024/12/27 10:16 a.m.7 views

SUSE-SU-2024:4429-1 Security update for python-grpcio

This update for python-grpcio fixes the following issues: - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919...

7.5CVSS8.1AI score0.00576EPSS
Exploits1References5
OSV
OSV
added 2024/12/27 10:16 a.m.7 views

SUSE-SU-2024:4428-1 Security update for python-grpcio

This update for python-grpcio fixes the following issues: - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919...

7.5CVSS8.1AI score0.00576EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/12/21 12:0 a.m.15 views

SUSE SLES15 / openSUSE 15 Security Update : python-grpcio (SUSE-SU-2024:4393-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4393-1 advisory. - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table...

7.5CVSS6.7AI score0.00576EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2024/12/21 12:0 a.m.15 views

openSUSE Security Advisory (SUSE-SU-2024:4393-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.00576EPSS
Exploits1References5
OSV
OSV
added 2024/12/20 3:27 p.m.19 views

SUSE-SU-2024:4401-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00576EPSS
Exploits1References5
OSV
OSV
added 2024/12/20 3:27 p.m.18 views

SUSE-SU-2024:4400-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00576EPSS
Exploits1References5
OSV
OSV
added 2024/12/20 10:24 a.m.3 views

SUSE-SU-2024:4393-1 Security update for python-grpcio

This update for python-grpcio fixes the following issues: - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919...

7.5CVSS8.1AI score0.00576EPSS
Exploits1References5
OSV
OSV
added 2024/08/06 11:16 a.m.2 views

DEBIAN-CVE-2024-7246

It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that other clients see failed requests. It's also possible to use this vulnerability to leak other clients HTTP header keys, but not values. This occurs because the...

5.3CVSS6.4AI score0.00224EPSS
Exploits1References1
Snyk
Snyk
added 2024/08/06 10:54 a.m.3 views

Expected Behavior Violation

Overview Affected versions of this package are vulnerable to Expected Behavior Violation via the HPackParser function when the gRPC client is communicating with an HTTP/2 proxy, allowing the attacker to poison the HPACK table. By manipulating the header encoding and poisoning the HPACK table...

6.3CVSS6.9AI score0.00224EPSS
Exploits1References2
Snyk
Snyk
added 2024/08/06 10:54 a.m.4 views

Expected Behavior Violation

Overview Affected versions of this package are vulnerable to Expected Behavior Violation via the HPackParser function when the gRPC client is communicating with an HTTP/2 proxy, allowing the attacker to poison the HPACK table. By manipulating the header encoding and poisoning the HPACK table...

6.3CVSS6.9AI score0.00224EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/08/06 12:0 a.m.4 views

PT-2024-38206 · Grpc +2 · Grpc +2

Name of the Vulnerable Software and Affected Versions: gRPC versions prior to 1.58.3 gRPC versions prior to 1.59.5 gRPC versions prior to 1.60.2 gRPC versions prior to 1.61.3 gRPC versions prior to 1.62.3 gRPC versions prior to 1.63.2 gRPC versions prior to 1.64.3 gRPC versions prior to 1.65.4...

7.5CVSS6AI score0.00576EPSS
Exploits1References43
Rows per page
Query Builder