Lucene search
+L

253 matches found

Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.10 views

PT-2026-7869

Name of the Vulnerable Software and Affected Versions webtransport-go versions prior to 0.10.0 Description A malicious peer can cause a denial of service in webtransport-go by preventing or indefinitely delaying WebTransport session closure. Specifically, a peer can withhold QUIC flow control...

9.9CVSS5.9AI score0.34346EPSS
Exploits45References118
F5 Networks
F5 Networks
added 2026/02/09 12:59 a.m.16 views

K000159924: OpenSSL vulnerability CVE-2025-15468

Security Advisory Description Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running...

5.9CVSS5.3AI score0.00748EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/02/04 1:20 p.m.5 views

CVE-2026-1788

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

8.7CVSS5.3AI score0.0038EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 3:22 a.m.5 views

EUVD-2026-5215

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

8.7CVSS5.3AI score0.0038EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 3:22 a.m.5 views

CVE-2026-1788

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

8.7CVSS5.3AI score0.0038EPSS
Exploits0References2
CVE
CVE
added 2026/02/03 3:22 a.m.24 views

CVE-2026-1788

CVE-2026-1788 is a reported out-of-bounds write in the Xquic Server (Xquic project) running on Linux, specifically in the QUIC packet processing module. The vulnerability affects Xquic Server versions up to 1.8.3 and is associated with buffer manipulation in the packet processing path, as describ...

8.7CVSS5.3AI score0.0038EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 3:22 a.m.31 views

CVE-2026-1788 Buffer Overflow in Xquic Server

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

8.7CVSS0.0038EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.14 views

PT-2026-5770

: Out-of-bounds Write vulnerability in Xquic Project Xquic Server xquic on Linux QUIC protocol implementation, packet processing module modules allows : Buffer Manipulation.This issue affects Xquic Server: through 1.8.3...

8.7CVSS5.3AI score0.0038EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/30 12:42 a.m.6 views

SUSE CVE-2025-15468

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

7.5CVSS5.8AI score0.00748EPSS
Exploits1References15
RedHat Linux
RedHat Linux
added 2026/01/28 10:8 a.m.4 views

openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling

A flaw was found in openssl. A remote attacker could trigger a NULL pointer dereference by sending an unknown or unsupported cipher ID during the client hello callback in applications using the QUIC Quick UDP Internet Connections protocol. This vulnerability, occurring when the SSLCIPHERfind...

5.9CVSS5.7AI score0.00748EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/01/28 9:6 a.m.14 views

openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling

A flaw was found in openssl. A remote attacker could trigger a NULL pointer dereference by sending an unknown or unsupported cipher ID during the client hello callback in applications using the QUIC Quick UDP Internet Connections protocol. This vulnerability, occurring when the SSLCIPHERfind...

5.9CVSS5.7AI score0.00748EPSS
Exploits1References4
Mageia
Mageia
added 2026/01/27 6:20 p.m.11 views

Updated haproxy packages fix bugs

Haproxy has two major, a few medium and a few minor bugs fixed in the last upstream version 2.8.18 of branch 2.8. Fixed major bugs list: - quic: use ncbmbuf for CRYPTO handling - stream: Force channel analysis on successful synchronous send Fixed medium bugs list: - dns: bind the nameserver...

5.9AI score
Exploits0References2
OSV
OSV
added 2026/01/27 6:20 p.m.7 views

MGASA-2026-0019 Updated haproxy packages fix bugs

Haproxy has two major, a few medium and a few minor bugs fixed in the last upstream version 2.8.18 of branch 2.8. Fixed major bugs list: - quic: use ncbmbuf for CRYPTO handling - stream: Force channel analysis on successful synchronous send Fixed medium bugs list: - dns: bind the nameserver socke...

5.9AI score
Exploits0References3
NVD
NVD
added 2026/01/27 4:16 p.m.9 views

CVE-2025-15468

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

5.9CVSS0.00748EPSS
Exploits1References5
OSV
OSV
added 2026/01/27 4:16 p.m.6 views

ALPINE-CVE-2025-15468

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

5.9CVSS5.8AI score0.00748EPSS
Exploits1References1
OSV
OSV
added 2026/01/27 4:16 p.m.8 views

AZL-75278 CVE-2025-15468 affecting package openssl for versions less than 3.3.5-3

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

5.9CVSS7AI score0.00748EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/01/27 4:1 p.m.26 views

CVE-2025-15468 NULL dereference in SSL_CIPHER_find() function on unknown cipher ID

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

0.00748EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/27 4:1 p.m.4 views

CVE-2025-15468 NULL dereference in SSL_CIPHER_find() function on unknown cipher ID

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

5.8AI score0.00748EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/27 4:1 p.m.6 views

CVE-2025-15468

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

5.8AI score0.00748EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2026/01/27 4:1 p.m.9 views

EUVD-2025-206400

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process causing Denial of Servic...

5.8AI score0.00748EPSS
Exploits1References5
Rows per page
Query Builder