ECHO-A540-A282-AEF6

Bulletin has no description...

ECHO-676A-E38E-E92A

Bulletin has no description...

CERTFR-2026-ALE-003

creationtimestamp| type| source ---|---|--- 2026-03-20 13:18:20+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/116261696202353385...

CVE-2025-38300

creationtimestamp| type| source ---|---|--- 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

GHSA-PJ3M-GMQ8-2R57

creationtimestamp| type| source ---|---|--- 2026-01-19 21:17:56+00:00| seen| Telegram/cDsTcRvxLH3SsCe0HOkAWriHJ6FleQF80u2lFTjRmosN9Yo...

Linux Distros Unpatched Vulnerability : CVE-2020-13977

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagios 4.4.5 allows an attacker, who already has administrative access to change the URL for JSON CGIs configuration setting, to modify the Alert Histogram and...

MAL-2025-9822 Malicious code in @zalastax/nolb-_bib (npm)

The package @zalastax/nolb-bib was found to contain malicious code...

GHSA-3M5F-9M66-XGP7

creationtimestamp| type| source ---|---|--- 2024-03-02 17:41:38+00:00| seen| https://t.me/ctinow/198428...

GHSA-MC3W-RV8P-F9XF

creationtimestamp| type| source ---|---|--- 2024-01-01 09:56:37+00:00| seen| https://t.me/ctinow/161255...

GHSA-9XRG-MH99-H5F7

creationtimestamp| type| source ---|---|--- 2023-12-06 17:42:55+00:00| seen| https://t.me/arpsyndicate/1520...

CVE-2021-28683

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received...

Null pointer dereference

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received...

CVE-2021-28683

CVE-2021-28683 affects Envoy up to version 1.71.1, with a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received. The connected documents include external security advisories and vendor references confirming the issue, and note patches/advisories...

PT-2021-17903 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.71.1 Description: A remotely exploitable issue exists where a NULL pointer dereference and crash can occur in TLS when an unknown TLS alert code is received. Recommendations: For versions prior to 1.71.1, update to a...

Denial Of Service (DoS)

servicemesh-proxy is vulnerable to denial of service. A NULL pointer dereference vulnerability in envoyproxy/envoy allows an attacker crash the application by establishing a TLS session that sends an invalid TLS alert code resulting in a denial of service...

envoyproxy/envoy: NULL pointer dereference in TLS alert code handling

A NULL pointer dereference vulnerability was found envoyproxy/envoy. This flaw allows an attacker to establish a TLS session that sends an invalid TLS alert code, causing a NULL pointer exception to occur that crashes the application, resulting in a denial of service. The highest threat from this...