Lucene search
K

57 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.26 views

EulerOS 2.0 SP11 : grpc (EulerOS-SA-2023-3007)

According to the versions of the grpc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exception...

7.5CVSS8.3AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.30 views

EulerOS 2.0 SP10 : grpc (EulerOS-SA-2024-1083)

According to the versions of the grpc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exception...

7.5CVSS8.3AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.35 views

EulerOS 2.0 SP10 : grpc (EulerOS-SA-2024-1059)

According to the versions of the grpc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exception...

7.5CVSS8.3AI score0.00412EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/31 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for grpc (EulerOS-SA-2023-3007)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.00412EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2023/08/09 3:30 p.m.17 views

Excessive Iteration in gRPC

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.3AI score0.00412EPSS
Exploits0References5Affected Software2
NVD
NVD
added 2023/08/09 1:15 p.m.17 views

CVE-2023-33953

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.7AI score0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/08/09 1:15 p.m.9 views

AZL-34770 CVE-2023-33953 affecting package grpc for versions less than 1.62.0-2

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.2AI score0.00412EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/08/09 1:15 p.m.32 views

CVE-2023-33953

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.2AI score0.00412EPSS
Exploits0References2
OSV
OSV
added 2023/08/09 1:15 p.m.3 views

UBUNTU-CVE-2023-33953

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.2AI score0.00412EPSS
Exploits0References3
OSV
OSV
added 2023/08/09 12:54 p.m.19 views

CVE-2023-33953 Denial-of-Service in gRPC

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.1AI score0.00412EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2023/08/09 12:54 p.m.24 views

CVE-2023-33953

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

7.5CVSS7.8AI score0.00412EPSS
Exploits0
CVE
CVE
added 2023/08/09 12:54 p.m.231 views

CVE-2023-33953

CVE-2023-33953 concerns the gRPC HPACK parser. Multiple vectors cause denial-of-service via: (1) unbounded memory buffering due to header size checks behind string reads, (2) unbounded CPU due to per-input-block memory copies creating an 0(n^2) parsing loop, (3) HPACK varints that can start with ...

7.5CVSS7.6AI score0.00412EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/09 12:0 a.m.10 views

PT-2023-24594

Name of the Vulnerable Software and Affected Versions gRPC affected versions not specified Description The issue allows hpack table accounting errors, which could lead to unwanted disconnects between clients and servers in exceptional cases. Three vectors were found that allow the following DOS...

7.5CVSS7AI score0.00412EPSS
Exploits0References38
RedHat Linux
RedHat Linux
added 2022/06/06 4:0 p.m.6 views

netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way

A flaw was found in the Netty's netty-codec due to unrestricted chunk lengths in the SnappyFrameDecoder. By sending a specially-crafted input, a remote attacker could cause excessive memory usage resulting in a denial of service...

7.5CVSS7.3AI score0.0628EPSS
Exploits0References5
OSV
OSV
added 2022/01/06 6:15 p.m.3 views

UBUNTU-CVE-2021-28714

Guest can force Linux netback driver to hog large amounts of kernel memory This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Incoming data packets for a guest in the Linux kernel's netback driver are buffered until the...

6.5CVSS6.6AI score0.00325EPSS
Exploits0References9
Microsoft KB
Microsoft KB
added 2018/09/10 12:0 a.m.3 views

March 23, 2018—KB4088881 (Preview of Monthly Rollup)

March 23, 2018—KB4088881 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4088875 released March 13, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Improves...

7.8CVSS6.9AI score0.08915EPSS
Exploits2
OSV
OSV
added 2015/06/11 6:7 p.m.15 views

USN-2639-1 openssl vulnerabilities

Praveen Kariyanahalli, Ivan Fratric and Felix Groebert discovered that OpenSSL incorrectly handled memory when buffering DTLS data. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2014-8176 Joseph...

7.5CVSS6.4AI score0.9986EPSS
Exploits2References7
Rows per page
Query Builder