Lucene search
K

62 matches found

EUVD
EUVD
added 14 hours ago5 views

EUVD-2026-42711

An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service DoS. When TCP proxy is engaged in a flow session,...

8.7CVSS6AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added yesterday4 views

CVE-2026-57023

An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service DoS. When TCP proxy is engaged in a flow session,...

8.7CVSS6AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2 days ago5 views

Juniper Junos OS Vulnerability (JSA110083)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA110083 advisory. - An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an...

8.7CVSS6.1AI score
Exploits0References2
Cvelist
Cvelist
added 2026/05/21 9:27 a.m.42 views

CVE-2026-41999 Incorrect Behaviour of Views with TCP PROXY Requests

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS0.00142EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/21 9:27 a.m.5 views

CVE-2026-41999

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS5.8AI score0.00142EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/21 9:27 a.m.13 views

EUVD-2026-31262

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS5.8AI score0.00142EPSS
Exploits0References1
CVE
CVE
added 2026/05/21 9:27 a.m.21 views

CVE-2026-41999

Technical details are not publicly available in the provided documents. Monitor for updates.

4.8CVSS5.8AI score0.00142EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/12/05 6:12 p.m.5 views

GHSA-RJ35-4M94-77JH Envoy forwards early CONNECT data in TCP proxy mode

Summary Forwarding of early CONNECT data in TCP proxy mode. Details Per RFC 7231-4.3.6 the sender of CONNECT and all inbound proxies switch to tunnel mode only after receiving 2xx response. However in TCP proxy mode, Envoy accepts client data before it has issued a 2xx response and eagerly proxie...

3.7CVSS6.5AI score0.00282EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/12/05 6:12 p.m.8 views

Envoy forwards early CONNECT data in TCP proxy mode

Summary Forwarding of early CONNECT data in TCP proxy mode. Details Per RFC 7231-4.3.6 the sender of CONNECT and all inbound proxies switch to tunnel mode only after receiving 2xx response. However in TCP proxy mode, Envoy accepts client data before it has issued a 2xx response and eagerly proxie...

5.3CVSS6.6AI score0.00282EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/12/03 6:15 p.m.6 views

CVE-2025-64763

Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, when Envoy is configured in TCP proxy mode to handle CONNECT requests, it accepts client data before issuing a 2xx response and forwards that data to the upstream TCP connection. If a forwardi...

5.3CVSS0.00282EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/03 6:13 p.m.2 views

CVE-2025-64763 Envoy forwards early CONNECT data in TCP proxy mode

Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, when Envoy is configured in TCP proxy mode to handle CONNECT requests, it accepts client data before issuing a 2xx response and forwards that data to the upstream TCP connection. If a forwardi...

3.7CVSS6.4AI score0.00282EPSS
Exploits0References1
OSV
OSV
added 2025/12/03 6:13 p.m.5 views

CVE-2025-64763 Envoy forwards early CONNECT data in TCP proxy mode

Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, when Envoy is configured in TCP proxy mode to handle CONNECT requests, it accepts client data before issuing a 2xx response and forwards that data to the upstream TCP connection. If a forwardi...

3.7CVSS6.7AI score0.00282EPSS
Exploits0References3
CVE
CVE
added 2025/12/03 6:13 p.m.21 views

CVE-2025-64763

Envoy CVE-2025-64763 relates to a de-synchronization risk in TCP proxy mode where Envoy may accept client data for CONNECT requests before sending a 2xx response, and then forward that data to the upstream connection. If the upstream proxy returns a non‑2xx status, the CONNECT tunnel state can be...

5.3CVSS6.4AI score0.00282EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.4 views

Envoy 安全漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A security vulnerability exists in Envoy versions 1.33.12, 1.34.10, 1.35.6, 1.36.2, and prior versions, which stems from a state desynchronization issue when processing CONNECT requests in TCP proxy mode...

5.3CVSS6.5AI score0.00282EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10244

Malware in sbrugna...

7.8CVSS6.8AI score0.029EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23142

Malware in sbrugna...

8.8CVSS8.7AI score0.00974EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-5845

Malware in sbrugna...

4.3CVSS6.4AI score0.02021EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-25996

Malicious code in bioql PyPI...

8.6CVSS7.9AI score0.01257EPSS
Exploits0References1
OSV
OSV
added 2024/03/25 9:15 a.m.2 views

UBUNTU-CVE-2021-47152

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data stream corruption Maxim reported several issues when forcing a TCP transparent proxy to use the MPTCP protocol for the inbound connections. He also provided a clean reproducer. The problem boils down to...

5.5CVSS6.6AI score0.00232EPSS
Exploits0References5
OSV
OSV
added 2024/03/06 11:0 a.m.15 views

BIT-ENVOY-2020-35470

Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter not HTTP filters...

8.8CVSS8.5AI score0.00974EPSS
Exploits0References4
Rows per page
Query Builder