Lucene search
+L

6 matches found

NVD
NVD
added 2026/06/26 6:17 p.m.6 views

CVE-2026-48743

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, Envoy can translate a downstream HTTP/3 request that is complete at the transport layer HEADERS with FIN / headers-only close but still carries a nonzero...

7.5CVSS0.00298EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/06/19 1:53 a.m.8 views

SUSE CVE-2026-42055

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion to 2 or grpcpass directives are used to proxy HTTP/2 traffic, the ignoreinvalidheaders directive is set to off, and the...

8.1CVSS6.5AI score0.03552EPSS
Exploits1References5
OSV
OSV
added 2026/06/17 3:16 p.m.3 views

CVE-2026-42055

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttpproxyv2module and ngxhttpgrpcmodule modules. This vulnerability exists when the proxyhttpversion to 2 or grpcpass directives are used to proxy HTTP/2 traffic, the ignoreinvalidheaders directive is set to off, and the...

9.2CVSS7.8AI score0.03552EPSS
Exploits1References10
OSV
OSV
added 2026/05/25 2:0 p.m.10 views

EEF-CVE-2026-47072 CRLF injection in WebSocket upgrade request in hackney

Summary Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in benoitc hackney allows HTTP Request/Response Splitting. The WebSocket upgrade code in src/hackney\ws.erl copies the host, path, headers ExtraHeaders, and protocols options from the caller-supplied opts map into th...

6.9CVSS6.2AI score0.00506EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:2 a.m.16 views

BIT-MEDIAWIKI-2023-29139

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. When a user with checkuserlog permissions makes many CheckUserLog API requests in some configurations, denial of service can occur RequestTimeoutException or upstream request timeout...

6.5CVSS6.4AI score0.00582EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/03/31 12:0 a.m.23 views

CVE-2023-29139

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. When a user with checkuserlog permissions makes many CheckUserLog API requests in some configurations, denial of service can occur RequestTimeoutException or upstream request timeout...

6.6AI score0.00582EPSS
Exploits0References1
Rows per page
Query Builder