Lucene search
K

34 matches found

CVE
CVE
added 2023/01/25 9:39 p.m.595 views

CVE-2022-3924

CVE-2022-3924 is a vulnerability in ISC BIND where stale-answer-client-timeout (enabled with a positive value) can cause a race between returning a stale answer and an early SERVFAIL, potentially triggering an assertion failure and DoS. Affected are BIND 9.16.12–9.16.36, 9.18.0–9.18.10, 9.19.0–9....

7.5CVSS7.5AI score0.15989EPSS
Exploits0References1Affected Software1
Redos
Redos
added 2022/09/29 12:0 a.m.70 views

ROS-20220929-01

BIND DNS server vulnerability is related to boundary conditions when reusing HTTP connection when requesting statistics from a statistics channel. Exploitation of the vulnerability could allow an attacker, acting remotely, using a managed DNS server to cause a read error outside the boundary...

8.2CVSS7.2AI score0.02299EPSS
Exploits0
Veracode
Veracode
added 2022/09/23 9:29 a.m.31 views

Denial Of Service (DoS)

libbind9.so is vulnerable to denial of service. The vulnerability exists in multiple functions in query.c due to serve-stale-client-timeout which allows an attacker to cause an application crash by sending specific queries to the resolver...

7.5CVSS7.2AI score0.01555EPSS
Exploits0References16Affected Software5
OSV
OSV
added 2022/08/26 4:15 p.m.4 views

DEBIAN-CVE-2021-3859

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS6.5AI score0.01287EPSS
Exploits0References1
OSV
OSV
added 2022/08/26 4:15 p.m.2 views

UBUNTU-CVE-2021-3859

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS7AI score0.01287EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/15 12:0 a.m.4 views

PT-2022-10741 · Undertow · Undertow

Name of the Vulnerable Software and Affected Versions: Undertow versions prior to 2.2.15 Final Description: A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS7.2AI score0.01287EPSS
Exploits0References19
RedHat Linux
RedHat Linux
added 2022/07/07 2:19 p.m.1 views

undertow: client side invocation timeout raised when calling over HTTP2

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS5.7AI score0.01287EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/02/07 1:55 p.m.5 views

undertow: client side invocation timeout raised when calling over HTTP2

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS5.7AI score0.01287EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/02/07 1:54 p.m.3 views

undertow: client side invocation timeout raised when calling over HTTP2

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS5.7AI score0.01287EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/02/02 2:57 p.m.2 views

undertow: client side invocation timeout raised when calling over HTTP2

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS5.7AI score0.01287EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/02/02 1:56 p.m.4 views

undertow: client side invocation timeout raised when calling over HTTP2

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS5.7AI score0.01287EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/02/02 1:28 p.m.3 views

undertow: client side invocation timeout raised when calling over HTTP2

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.5CVSS5.7AI score0.01287EPSS
Exploits0References4
OSV
OSV
added 2017/12/21 6:18 p.m.17 views

MGASA-2017-0460 Updated java-1.8.0-openjdk packages fix security vulnerabilities

Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. CVE-2017-10285, CVE-2017-10346 It was discovered that the Kerberos client implementation in the Libraries...

9.6CVSS7.7AI score0.16181EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2013/03/10 12:0 a.m.24 views

CentOS 6 : squid (CESA-2013:0505)

Updated squid packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5CVSS7.3AI score0.23005EPSS
Exploits1References3
Rows per page
Query Builder