Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-7260

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00409EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-27777

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00742EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-41708

Malicious code in bioql PyPI...

4.7CVSS6.6AI score0.0011EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2025-14634

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.0029EPSS
Exploits0References4
OpenVAS
OpenVASadded 2025/08/11 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-f7e5d2e40f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS7.5AI score0.0029EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/08/09 12:0 a.m.3 views

Fedora 41 : varnish (2025-f7e5d2e40f)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-f7e5d2e40f advisory. Security: This update includes fixes for CVE-2025-47905 aka VSV00016: A client-side desync vulnerability can be triggered in Varnish Cache. This vulnerabilit...

5.4CVSS6.1AI score0.0029EPSS
Exploits0References2
OpenVAS
OpenVASadded 2025/08/08 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-525d870026)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.8AI score0.0029EPSS
Exploits0References3
OSV
OSVadded 2025/05/28 11:59 a.m.6 views

BIT-VARNISH-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

5.4CVSS6.6AI score0.0029EPSS
Exploits0References4
NVD
NVDadded 2025/05/13 10:15 p.m.23 views

CVE-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

5.4CVSS0.0029EPSS
Exploits0References3
OSV
OSVadded 2025/05/13 10:15 p.m.1 views

ALPINE-CVE-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

5.4CVSS7AI score0.0029EPSS
Exploits0References1
OSV
OSVadded 2025/05/13 10:15 p.m.13 views

CVE-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

6.7AI score
Exploits0References3
CVE
CVEadded 2025/05/13 12:0 a.m.137 views

CVE-2025-47905

CVE-2025-47905 affects Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14. The issue enables client-side desynchronization via HTTP/1 requests because CRLF can be skipped to delimit chunk boundaries. This description comes from the CVE entry and correlated ad...

5.4CVSS7AI score0.0029EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/05/13 12:0 a.m.11 views

CVE-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

5.4CVSS0.0029EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/05/13 12:0 a.m.1 views

FreeBSD : www/varnish7 -- Request Smuggling Attack (89c668d5-2f80-11f0-9632-641c67a117d8)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 89c668d5-2f80-11f0-9632-641c67a117d8 advisory. The Varnish Development Team reports: A client-side desync vulnerability can be triggered in Varnish...

5.7AI score
Exploits0References2
Debian CVE
Debian CVEadded 2025/05/13 12:0 a.m.10 views

CVE-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

5.4CVSS5.9AI score0.0029EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2025/05/13 12:0 a.m.2 views

PT-2025-21129 · Varnish +4 · Varnish Enterprise +5

Name of the Vulnerable Software and Affected Versions: Varnish Cache versions 7.6.3 and earlier, 7.7.0 Varnish Enterprise versions 6.0.13r13 and earlier Description: The issue allows client-side desync via HTTP/1 requests. This occurs because the product incorrectly permits CRLF to be skipped to...

5.4CVSS5.7AI score0.00409EPSS
Exploits0References44
Vulnrichment
Vulnrichmentadded 2025/05/13 12:0 a.m.9 views

CVE-2025-47905

Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries...

5.4CVSS5.5AI score0.0029EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/04/01 12:0 a.m.7 views

Debian dla-4101 : libvarnishapi-dev - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4101 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4101-1 [email protected] https://www.debian.org/lts/security/...

5.4CVSS5.6AI score0.00409EPSS
Exploits0References4
Debian
Debianadded 2025/03/31 8:56 p.m.10 views

[SECURITY] [DLA 4101-1] varnish security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4101-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk March 31, 2025 https://wiki.debian.org/LTS -...

5.4CVSS6.4AI score0.00409EPSS
Exploits0
OSV
OSVadded 2025/03/29 6:22 a.m.4 views

OESA-2025-1333 varnish security update

This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...

5.4CVSS6.9AI score0.00409EPSS
Exploits0References2
Rows per page
Query Builder