CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1055 matches found

Amazon•added 2024/01/08 12:0 a.m.•1 views

Important: squid

Issue Overview: Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remot...

8.6CVSS6.9AI score0.01147EPSS

Exploits0

Tenable Nessus•added 2024/01/08 12:0 a.m.•45 views

Amazon Linux 2023 : squid (ALAS2023-2024-467)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-467 advisory. Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a...

8.6CVSS7.5AI score0.01147EPSS

Exploits0References4

Amazon•added 2024/01/08 12:0 a.m.•3 views

Important: squid

8.6CVSS6.7AI score0.01147EPSS

Exploits0

IBM Security Bulletins•added 2024/01/05 9:34 p.m.•26 views

Security Bulletin: IBM Storage Ceph is vulnerable to uncontrolled recursion in Golang (CVE-2022-30630)

Summary Golang is used by IBM Storage Ceph as part of RGW and in assorted other locations. CVE-2022-30630 Vulnerability Details CVEID:CVE-2022-30630 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by an uncontrolled recursion flaw in Glob in io/fs due to stack exhaustion. By...

7.5CVSS7.5AI score0.00052EPSS

Exploits0Affected Software1

Tenable Nessus•added 2024/01/04 12:0 a.m.•35 views

Siemens SIMATIC and SIPLUS Products Uncontrolled Recursion (CVE-2022-47374)

A vulnerability has been identified in SIMATIC PC-Station Plus All versions, SIMATIC S7-400 CPU 412-2 PN V7 All versions, SIMATIC S7-400 CPU 414-3 PN/DP V7 All versions, SIMATIC S7-400 CPU 414F-3 PN/DP V7 All versions, SIMATIC S7-400 CPU 416-3 PN/DP V7 All versions, SIMATIC S7-400 CPU 416F-3 PN/D...

7.5CVSS6.9AI score0.00218EPSS

Exploits0References3

Cvelist•added 2024/01/03 7:31 a.m.•20 views

CVE-2024-0211 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.8AI score0.00082EPSS

Exploits1References2

Cvelist•added 2024/01/03 7:31 a.m.•17 views

CVE-2024-0210 Uncontrolled Recursion in Wireshark

Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.8AI score0.00074EPSS

Exploits1References2

Vulnrichment•added 2024/01/03 7:31 a.m.•2 views

CVE-2024-0210 Uncontrolled Recursion in Wireshark

Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.8AI score0.00074EPSS

Exploits1References2

Cvelist•added 2024/01/03 7:31 a.m.•24 views

CVE-2024-0208 Improper Handling of Missing Values in Wireshark

GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.9AI score0.00034EPSS

Exploits1References2

Tenable Nessus•added 2023/12/28 12:0 a.m.•54 views

Fedora 39 : squid (2023-ab77331a34)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ab77331a34 advisory. - New version 6.6 - Important security fixes - Removed gopher support Tenable has extracted the preceding description block directly from the Fedora...

8.6CVSS7.6AI score0.09621EPSS

Exploits0References7

Tenable Nessus•added 2023/12/28 12:0 a.m.•35 views

Fedora 38 : squid (2023-6317eaa767)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-6317eaa767 advisory. - New version 6.6 - Important security fixes - Removed gopher support Tenable has extracted the preceding description block directly from the Fedora...

8.6CVSS7.6AI score0.09621EPSS

Exploits0References7

OSV•added 2023/12/22 11:6 a.m.•1 views

OESA-2023-1947 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2....

8.6CVSS6.8AI score0.01147EPSS

Exploits0References2

SUSE CVE•added 2023/12/16 1:43 a.m.•1 views

SUSE CVE-2023-50269

Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to...

7.5CVSS8.3AI score0.01147EPSS

Exploits0References7

RedhatCVE•added 2023/12/15 5:28 a.m.•34 views

CVE-2023-50269

A flaw was found in Squid, which is susceptible to a Denial of Service DoS due to an Uncontrolled Recursion bug, specifically targeting HTTP Request parsing. Exploiting this issue involves a remote client initiating a DoS attack by sending an oversized X-Forwarded-For header when the...

7.5CVSS7.8AI score0.01147EPSS

Exploits0References6

Tenable Nessus•added 2023/12/15 12:0 a.m.•69 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Vim vulnerabilities (USN-6557-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6557-1 advisory. It was discovered that Vim could be made to dereference invalid memory. An attacker could possibly us...

7.8CVSS7.1AI score0.00484EPSS

Exploits8References16