Lucene search
K

37 matches found

SUSE CVE
SUSE CVE
added 2025/02/14 5:8 a.m.2 views

SUSE CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS6.4AI score0.00872EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/06/05 12:0 a.m.5 views

The vulnerability of the HTTP/3 QUIC module (ngx_http_v3_module) in NGINX Plus and NGINX OSS web servers allows a attacker to cause a service failure.

The vulnerability of the HTTP/3 QUIC module ngxhttpv3module in NGINX Plus and NGINX OSS servers is related to buffer overflow in the stack. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted HTTP/3 requests...

6.5CVSS6.9AI score0.00872EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/06/05 12:0 a.m.7 views

The vulnerability of the HTTP/3 QUIC module (ngx_http_v3_module) in NGINX Plus and NGINX OSS web servers allows a attacker to cause a service failure.

The vulnerability of the HTTP/3 QUIC module ngxhttpv3module in NGINX Plus and NGINX OSS servers is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted HTTP/3 requests...

7.8CVSS7.1AI score0.00848EPSS
Exploits0References7Affected Software3
SUSE CVE
SUSE CVE
added 2024/05/30 2:58 a.m.3 views

SUSE CVE-2024-32760

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS7.5AI score0.00848EPSS
Exploits0References3
OSV
OSV
added 2024/05/29 4:15 p.m.2 views

DEBIAN-CVE-2024-32760

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS6.9AI score0.00848EPSS
Exploits0References1
OSV
OSV
added 2024/05/29 4:15 p.m.1 views

ALPINE-CVE-2024-32760

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 encoder instructions can cause NGINX worker processes to terminate or cause or other potential impact...

6.5CVSS7AI score0.00848EPSS
Exploits0References1
OSV
OSV
added 2024/05/29 4:15 p.m.2 views

DEBIAN-CVE-2024-35200

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS6.5AI score0.00917EPSS
Exploits0References1
OSV
OSV
added 2024/05/29 4:15 p.m.2 views

ALPINE-CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS6.9AI score0.00872EPSS
Exploits0References1
OSV
OSV
added 2024/05/29 4:15 p.m.1 views

DEBIAN-CVE-2024-31079

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate or cause other potential impact. This attack requires that a request be specifically timed during the connection draining process, which the attacke...

4.8CVSS6.3AI score0.00872EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/29 4:15 p.m.21 views

CVE-2024-35200

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate...

5.3CVSS6.8AI score0.00917EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/29 12:0 a.m.5 views

PT-2024-3974

Name of the Vulnerable Software and Affected Versions NGINX Plus affected versions not specified NGINX OSS affected versions not specified Description The issue is related to a null pointer dereference in the HTTP/3 QUIC module ngx http v3 module of NGINX Plus and NGINX OSS. This can be exploited...

7.8CVSS6.1AI score0.00917EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2024/02/19 12:0 a.m.237 views

nginx 1.25.x < 1.25.4 DoS

According to its Sever response header, the installed version of nginx is 1.25.x prior to 1.25.4. It may, therefore, affected by the following vulnerabilities: - When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to...

7.5CVSS7.3AI score0.01061EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/02/17 3:21 a.m.2 views

SUSE CVE-2024-24989

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. Note: The HTTP/3 QUIC module is not enabled by default and is considered experimental. For more information, refer to Support for QUIC and HTTP/3...

7.5CVSS8.7AI score0.01061EPSS
Exploits0References3
OSV
OSV
added 2024/02/14 5:15 p.m.1 views

DEBIAN-CVE-2024-24989

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. Note: The HTTP/3 QUIC module is not enabled by default and is considered experimental. For more information, refer to Support for QUIC and HTTP/3...

7.5CVSS7.6AI score0.01061EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/14 4:30 p.m.10 views

CVE-2024-24990 NGINX HTTP/3 QUIC vulnerability

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. Note: The HTTP/3 QUIC module is not enabled by default and is considered experimental. For more information, refer to Support for QUIC and HTTP/3...

7.5CVSS7.5AI score0.00914EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/14 12:0 a.m.23 views

F5 Nginx Resource Management Error Vulnerability

F5 Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from F5, Inc. distributed under the BSD-like protocol. A security vulnerability exists in F5 Nginx Plus versions R30 and R31, which stems from an undisclosed request that could cause an NGINX worker process...

7.5CVSS8.4AI score0.00914EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/02/14 12:0 a.m.23 views

F5 Nginx Code Issues Vulnerabilities

F5 Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from F5 Inc. distributed under the BSD-like protocol. A security vulnerability exists in F5 Nginx Plus version R31, which stems from an undisclosed request that could cause an NGINX worker process to...

7.5CVSS8.4AI score0.01061EPSS
Exploits0References4
Rows per page
Query Builder