Lucene search
+L

2609 matches found

OSV
OSV
added 2026/06/02 10:8 a.m.12 views

RHSA-2026:22316 Red Hat Security Advisory: libsoup security update

Bulletin has no description...

5.9CVSS5.7AI score0.00254EPSS
Exploits1References8
Microsoft CVE
Microsoft CVE
added 2026/06/02 8:1 a.m.7 views

Libsoup: libsoup: http request smuggling via unsigned to signed conversion error

...

4.8CVSS5.8AI score0.00872EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/02 12:0 a.m.11 views

openSUSE 16 Security Update : libsoup (openSUSE-SU-2026:20845-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20845-1 advisory. This update for libsoup fixes the following issue - CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections...

7.5CVSS6AI score0.00829EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/06/01 3:10 p.m.17 views

Moderate: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/01 3:10 p.m.22 views

libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment

A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/06/01 1:36 p.m.14 views

libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment

A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/06/01 1:36 p.m.17 views

Moderate: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References2
OSV
OSV
added 2026/06/01 1:1 p.m.5 views

SUSE-SU-2026:21946-1 Security update for libsoup

This update for libsoup fixes the following issue - CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution bsc1259767...

7.5CVSS5.9AI score0.00829EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/06/01 12:52 p.m.23 views

libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment

A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/06/01 12:52 p.m.20 views

Moderate: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.2CVSS5.8AI score0.00254EPSS
Exploits1References2
OSV
OSV
added 2026/06/01 10:8 a.m.4 views

SUSE-SU-2026:21879-1 Security update for libsoup

This update for libsoup fixes the following issue - CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution bsc1259767...

7.5CVSS5.9AI score0.00829EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/01 12:0 a.m.9 views

Security update for libsoup (important)

openSUSE security update: security update for libsoup ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20845-1 Rating: important References: bsc1259767 Cross-References: CVE-2026-4271 CVSS scores: CVE-2026-4271 SUSE : 8.6...

8.8CVSS5.9AI score0.00829EPSS
Exploits1References1
OSV
OSV
added 2026/05/31 12:0 a.m.6 views

OPENSUSE-SU-2026:10917-1 libsoup-2_4-1-2.74.3-21.1 on GA media

These are all security issues fixed in the libsoup-24-1-2.74.3-21.1 package on the GA media of openSUSE Tumbleweed...

6.5CVSS5.8AI score0.00376EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/30 2:20 a.m.24 views

SUSE CVE-2026-6324

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS5.8AI score0.00872EPSS
Exploits0References3
OSV
OSV
added 2026/05/30 12:0 a.m.8 views

OPENSUSE-SU-2026:10911-1 libsoup-3_0-0-3.6.6-5.1 on GA media

These are all security issues fixed in the libsoup-30-0-3.6.6-5.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00829EPSS
Exploits1References1
OSV
OSV
added 2026/05/29 1:40 p.m.8 views

OPENSUSE-SU-2026:20845-1 Security update for libsoup

This update for libsoup fixes the following issue - CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution bsc1259767...

7.5CVSS5.9AI score0.00829EPSS
Exploits1References2
OSV
OSV
added 2026/05/29 1:40 p.m.7 views

SUSE-SU-2026:21998-1 Security update for libsoup

This update for libsoup fixes the following issue - CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution bsc1259767...

7.5CVSS5.6AI score0.00829EPSS
Exploits1References3
OSV
OSV
added 2026/05/29 1:40 p.m.6 views

SUSE-SU-2026:21951-1 Security update for libsoup

This update for libsoup fixes the following issue - CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution bsc1259767...

7.5CVSS5.9AI score0.00829EPSS
Exploits1References3
OSV
OSV
added 2026/05/29 10:10 a.m.9 views

RHSA-2026:21686 Red Hat Security Advisory: libsoup security update

Bulletin has no description...

5.9CVSS5.7AI score0.00254EPSS
Exploits1References8
NVD
NVD
added 2026/05/29 7:16 a.m.16 views

CVE-2026-6324

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS0.00872EPSS
Exploits0References4
Rows per page
Query Builder