Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.42 views

RHEL 7 : rh-nginx114-nginx (RHSA-2018:3681)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3681 advisory. - nginx: Excessive memory consumption via flaw in HTTP/2 implementation CVE-2018-16843 - nginx: Excessive CPU usage via flaw in HTTP/2...

8.2CVSS6.8AI score0.47057EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2022/05/31 12:0 a.m.56 views

Nginx Plus R1 < R15-P2 / R16 < R16-P1 Multiple Vulnerabilities

According to it's self reported version, the installed version of Nginx Plus is R1 built on Open Source version 1.5.3-1 prior to R15-P2 or R16 built on Open Source version 1.15.2 prior to R16-P1. It is, therefore, affected by the following issues : - An unspecified error exists related to the...

8.2CVSS6.7AI score0.47057EPSS
Exploits1References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/21 6:28 p.m.44 views

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - nginx (CVE-2018-16844, CVE-2018-16845, CVE-2018-16843, CVE-2019-7401)

Summary Security Vulnerabilities affect IBM Cloud Private - nginx Vulnerability Details CVEID: CVE-2018-16844 DESCRIPTION: nginx is vulnerable to a denial of service, caused by a flaw when complied with ngxhttpv2module. By sending a specially-crafted HTTP/2 request, a remote attacker could exploi...

9.8CVSS0.8AI score0.47057EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.33 views

Mageia: Security Advisory (MGASA-2018-0459)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.1AI score0.47057EPSS
Exploits1References3
Apple
Apple
added 2021/09/20 12:0 a.m.524 views

About the security content of Xcode 13

About the security content of Xcode 13 This document describes the security content of Xcode 13. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recen...

9.8CVSS7.5AI score0.81958EPSS
Exploits10References1Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2019:0334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.1AI score0.47057EPSS
Exploits1References2
Symantec
Symantec
added 2020/05/06 6:48 p.m.145 views

Nginx Vulnerabilities Jul 2017 - Oct 2019

Summary Symantec SWG products using affected versions of Nginx may be susceptible to multiple Nginx vulnerabilities. A remote attacker can use crafted requests to obtain sensitive information or cause denial of service. An attacker can also obtain sensitive information or cause denial of service ...

7.8CVSS1.8AI score0.82017EPSS
Exploits7Affected Software2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.42 views

Huawei EulerOS: Security Advisory for nginx (EulerOS-SA-2019-2084)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.82017EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.34 views

openSUSE: Security Advisory for nginx (openSUSE-SU-2019:2120-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2CVSS7.6AI score0.82017EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/09/11 12:0 a.m.56 views

openSUSE Security Update : nginx (openSUSE-2019-2120) (0-Length Headers Leak) (Data Dribble) (Resource Loop)

This update for nginx fixes the following issues : Security issues fixed : - CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization bsc1145579. - CVE-2019-9513: Fixed a denial of service caused by resource loops bsc1145580. - CVE-2019-9516: Fixed a deni...

8.2CVSS7.1AI score0.82017EPSS
Exploits1References12
IBM Security Bulletins
IBM Security Bulletins
added 2019/08/13 8:10 p.m.35 views

Security Bulletin: API Connect V2018 is impacted by a vulnerability in nginx (CVE-2018-16843 CVE-2018-16844)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2018-16843 DESCRIPTION: nginx is vulnerable to a denial of service, caused by a flaw when complied with ngxhttpv2module. By sending a specially-crafted HTTP/2 request, a remote attacker could explo...

7.8CVSS1.3AI score0.47057EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/17 12:0 a.m.419 views

Nginx 1.x < 1.14.1 Multiple Vulnerabilties

According to its Server response header, the installed version of nginx is 1.x prior to 1.14.1 or 1.15.x prior to 1.15.6. It is, therefore, affected by the following issues : - An unspecified error exists related to the module 'ngxhttpv2module' that allows excessive memory usage. CVE-2018-16843 -...

8.2CVSS7.3AI score0.47057EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/05/17 12:0 a.m.66 views

Nginx 1.15.x < 1.15.6 Multiple Vulnerabilties

According to its Server response header, the installed version of nginx is 1.x prior to 1.14.1 or 1.15.x prior to 1.15.6. It is, therefore, affected by the following issues : - An unspecified error exists related to the module 'ngxhttpv2module' that allows excessive memory usage. CVE-2018-16843 -...

8.2CVSS7.3AI score0.47057EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2019/02/19 12:0 a.m.36 views

openSUSE: Security Advisory for nginx (openSUSE-SU-2019:0195-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2CVSS7.4AI score0.47057EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/02/19 12:0 a.m.75 views

openSUSE Security Update : nginx (openSUSE-2019-195)

This update for nginx fixes the following issues : nginx was updated to 1.14.2 : - Bugfix: nginx could not be built on Fedora 28 Linux. - Bugfix: in handling of client addresses when using unix domain listen sockets to work with datagrams on Linux. - Change: the logging level of the 'http request...

8.2CVSS6.7AI score0.47057EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.44 views

Fedora 29 : 1:nginx (2018-7c540fdab4)

Security fix for CVE-2018-16843, CVE-2018-16844, CVE-2018-16845 + nginx rebase to 1.14.1. ---- New version 1.14.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and forma...

8.2CVSS6.7AI score0.47057EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/12/17 12:0 a.m.71 views

Amazon Linux AMI : nginx (ALAS-2018-1125)

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngxhttpv2module not compiled by default if the 'http2' option of the 'listen' directive is used in a configuratio...

7.8CVSS6.6AI score0.47057EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/11/27 9:18 a.m.205 views

Important: Red Hat Security Advisory: rh-nginx114-nginx security update

An update for rh-nginx114-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.2CVSS6.8AI score0.47057EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2018/11/27 9:4 a.m.204 views

Important: Red Hat Security Advisory: rh-nginx112-nginx security update

An update for rh-nginx112-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.2CVSS6.8AI score0.47057EPSS
Exploits1References4
Debian
Debian
added 2018/11/08 9:34 p.m.602 views

[SECURITY] [DSA 4335-1] nginx security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4335-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 08, 2018 https://www.debian.org/security/faq -...

8.2CVSS8AI score0.47057EPSS
Exploits1
Rows per page
Query Builder