Lucene search
+L

43 matches found

CVE
CVE
added 3 days ago3 views

CVE-2026-14646

Nexus Repository 3 contains an SSRF issue where existing SSRF protections are not applied to HTTP redirect targets from proxy upstreams. If a user with read access to a proxy repo backed by an attacker-controlled or compromised upstream server — including anonymous users when enabled — requests c...

4.9CVSS6.1AI score0.00265EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/07/06 4:52 a.m.6 views

undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery.

A flaw was found in undici. An attacker-controlled upstream server can exploit a vulnerability in Undici's HTTP/1.1 client, specifically related to response queue poisoning on reused keep-alive sockets. This allows the attacker to inject an unsolicited HTTP/1.1 response onto an idle socket...

3.7CVSS7AI score0.00228EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/06/26 5:34 p.m.6 views

CVE-2026-48743

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, Envoy can translate a downstream HTTP/3 request that is complete at the transport layer HEADERS with FIN / headers-only close but still carries a nonzero...

7.5CVSS5.8AI score0.00298EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2026/06/19 1:58 a.m.16 views

SUSE CVE-2026-6733

Impact: Undici's HTTP/1.1 client is vulnerable to response queue poisoning on reused keep-alive sockets. An attacker-controlled upstream server can inject an unsolicited HTTP/1.1 response onto an idle socket after a request completes. When the client dispatches the next request on that socket, it...

3.7CVSS5.3AI score0.00228EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/06/17 11:20 p.m.8 views

CVE-2026-6733

A flaw was found in undici. An attacker-controlled upstream server can exploit a vulnerability in Undici's HTTP/1.1 client, specifically related to response queue poisoning on reused keep-alive sockets. This allows the attacker to inject an unsolicited HTTP/1.1 response onto an idle socket...

3.7CVSS4.9AI score0.00228EPSS
Exploits0References6
Snyk
Snyk
added 2026/06/17 6:21 p.m.7 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview undici is an An HTTP/1.1 client, written from scratch for Node.js Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition in the HTTP/1.1 client when an attacker-controlled upstream server injects an unsolicited response onto an idle keep-alive...

6.3CVSS5.9AI score0.00228EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/17 6:21 p.m.9 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview org.webjars.npm:undici is an An HTTP/1.1 client, written from scratch for Node.js Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition in the HTTP/1.1 client when an attacker-controlled upstream server injects an unsolicited response onto an...

6.3CVSS5.9AI score0.00228EPSS
Exploits0References2
OSV
OSV
added 2026/06/17 6:18 p.m.5 views

DEBIAN-CVE-2026-6733

Impact: Undici's HTTP/1.1 client is vulnerable to response queue poisoning on reused keep-alive sockets. An attacker-controlled upstream server can inject an unsolicited HTTP/1.1 response onto an idle socket after a request completes. When the client dispatches the next request on that socket, it...

3.7CVSS5.3AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 6:18 p.m.13 views

CVE-2026-6733

Impact: Undici's HTTP/1.1 client is vulnerable to response queue poisoning on reused keep-alive sockets. An attacker-controlled upstream server can inject an unsolicited HTTP/1.1 response onto an idle socket after a request completes. When the client dispatches the next request on that socket, it...

3.7CVSS0.00228EPSS
Exploits0References3
OSV
OSV
added 2026/06/17 5:14 p.m.2 views

CVE-2026-6733 undici vulnerable to HTTP response queue poisoning via keep-alive socket reuse

Impact: Undici's HTTP/1.1 client is vulnerable to response queue poisoning on reused keep-alive sockets. An attacker-controlled upstream server can inject an unsolicited HTTP/1.1 response onto an idle socket after a request completes. When the client dispatches the next request on that socket, it...

3.7CVSS7.1AI score0.00228EPSS
Exploits0References5
CVE
CVE
added 2026/06/17 5:14 p.m.61 views

CVE-2026-6733

Undici’s HTTP/1.1 client is vulnerable to response queue poisoning on reused keep-alive sockets. An attacker-controlled upstream server can inject an unsolicited HTTP/1.1 response onto an idle socket after a request completes; when the client issues the next request on that socket, the injected r...

3.7CVSS5.3AI score0.00228EPSS
Exploits0References3Affected Software1
Exploit DB
Exploit DB
added 2026/05/13 12:0 a.m.105 views

coreruleset 4.21.0 - Firewall Bypass

Exploit Title: coreruleset 4.21.0 - Firewall Bypass Date: 04/08/2026 Exploit Author: Daytrift Newgen Vendor Homepage: https://github.com/coreruleset Software Link: https://github.com/coreruleset/coreruleset Version: 4.22.0/3.3.8 Tested on: Fedora, MacOS CVE : CVE-2026-21876 import base64 import o...

9.3CVSS6AI score0.13124EPSS
Exploits4
CVE
CVE
added 2026/04/07 12:0 a.m.14 views

CVE-2025-71058

CVE-2025-71058 affects Dual DHCP DNS Server 8.01, which improperly accepts and caches UDP DNS responses without validating they come from a configured upstream DNS server. The root cause is that responses are matched primarily by TXID and then inserted into the cache, allowing a remote attacker t...

9.1CVSS6AI score0.00451EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/02 7:42 a.m.9 views

nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

A flaw was found in NGINX. When NGINX is configured to proxy to upstream Transport Layer Security TLS servers, An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response...

8.2CVSS6AI score0.00339EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/01 10:57 p.m.3 views

nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

A flaw was found in NGINX. When NGINX is configured to proxy to upstream Transport Layer Security TLS servers, An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response...

8.2CVSS6AI score0.00339EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/01 2:29 a.m.3 views

nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

A flaw was found in NGINX. When NGINX is configured to proxy to upstream Transport Layer Security TLS servers, An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response...

8.2CVSS6AI score0.00339EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/10 10:41 p.m.2 views

nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

A flaw was found in NGINX. When NGINX is configured to proxy to upstream Transport Layer Security TLS servers, An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response...

8.2CVSS5.8AI score0.00339EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-10377

Malicious code in bioql PyPI...

8.3CVSS7.2AI score0.00577EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-22911

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00825EPSS
Exploits0References3
OSV
OSV
added 2025/04/08 2:15 p.m.5 views

ALPINE-CVE-2025-31498

c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in readanswers when processanswer may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed...

8.3CVSS6.8AI score0.00577EPSS
Exploits0References1
Rows per page
Query Builder