28 matches found
EUVD-2025-23337
Malicious code in bioql PyPI...
EUVD-2022-52435
Malicious code in bioql PyPI...
CVE-2025-54939
LiteSpeed QUIC LSQUIC Library before 4.3.1 has an lsquicenginepacketin memory leak...
CVE-2025-54939
LiteSpeed QUIC LSQUIC Library before 4.3.1 has an lsquicenginepacketin memory leak...
CVE-2025-54939
LiteSpeed QUIC LSQUIC Library before 4.3.1 has an lsquicenginepacketin memory leak...
CVE-2025-54939
CVE-2025-54939 affects the LiteSpeed QUIC (LSQUIC) Library prior to 4.3.1, where a memory leak in the lsquic_engine_packet_in path can cause linear memory growth and potential DoS. The vulnerability is triggered by mis-handling coalesced QUIC Initial packets before a handshake, leading to memory ...
CVE-2025-54939
LiteSpeed QUIC LSQUIC Library before 4.3.1 has an lsquicenginepacketin memory leak...
CVE-2025-54939
LiteSpeed QUIC LSQUIC Library before 4.3.1 has an lsquicenginepacketin memory leak...
PT-2025-31606 · Litespeed · Litespeed Quic
Name of the Vulnerable Software and Affected Versions: LiteSpeed QUIC LSQUIC Library versions prior to 4.3.1 Description: The LiteSpeed QUIC LSQUIC Library contains a memory leak in the lsquic engine packet in function. Recommendations: Update to LiteSpeed QUIC LSQUIC Library version 4.3.1 or lat...
Litespeed Technologie LiteSpeed QUIC 安全漏洞
Litespeed Technologie LiteSpeed QUIC LSQUIC is an open source implementation of QUIC and HTTP/3 functionality for servers and clients from Litespeed Technologie, USA. A security vulnerability exists in Litespeed Technologie LiteSpeed QUIC versions prior to 4.3.1, which stems from a memory leak in...
CVE-2024-25678
In LiteSpeed QUIC LSQUIC Library before 4.0.4, DCID validation is mishandled...
CVE-2022-30592
liblsquic/lsquicqenchdl.c in LiteSpeed QUIC aka LSQUIC before 3.1.0 mishandles MAXTABLECAPACITY...
CVE-2025-24947
A hash collision vulnerability in the hash table used to manage connections in LSQUIC aka LiteSpeed QUIC before 4.2.0 allows remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs. This is caused by...
CVE-2025-24947
A hash collision vulnerability in the hash table used to manage connections in LSQUIC aka LiteSpeed QUIC before 4.2.0 allows remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs. This is caused by...
CVE-2025-24947
CVE-2025-24947 (LSQUIC) : LSQUIC (LiteSpeed QUIC) versions prior to 4.2.0 are affected by a hash collision vulnerability in the hash table used to manage connections. Remote attackers can trigger a Hash DoS by initiating connections with colliding Source Connection IDs (SCIDs) due to XXH32 usage,...
Litespeed Technologie LiteSpeed QUIC(LSQUIC) 安全漏洞
Litespeed Technologie LiteSpeed QUIC LSQUIC is an open source implementation of QUIC and HTTP/3 functionality for servers and clients from Litespeed Technologie, USA. A security vulnerability exists in Litespeed Technologie LiteSpeed QUIC LSQUIC prior to version 4.2.0 that stems from the presence...
CVE-2024-25678
In LiteSpeed QUIC LSQUIC Library before 4.0.4, DCID validation is mishandled...
CVE-2024-25678
In LiteSpeed QUIC LSQUIC Library before 4.0.4, DCID validation is mishandled...
Design/Logic Flaw
In LiteSpeed QUIC LSQUIC Library before 4.0.4, DCID validation is mishandled...
CVE-2024-25678
In LiteSpeed QUIC LSQUIC Library before 4.0.4, DCID validation is mishandled...