Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2020/04/29 12:0 a.m.31 views

Photon OS 1.0: Envoy PHSA-2020-1.0-0290

An update of the envoy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0290. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid136105...

7.8CVSS6.8AI score0.65393EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.33 views

Photon OS 2.0: Envoy PHSA-2020-2.0-0229

An update of the envoy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0229. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid135867...

7.8CVSS6.8AI score0.65393EPSS
Exploits3References8
NVD
NVD
added 2019/10/09 4:15 p.m.30 views

CVE-2019-15226

Upon receiving each incoming request header data, Envoy will iterate over existing request headers to verify that the total size of the headers stays below a maximum limit. The implementation in versions 1.10.0 through 1.11.1 for HTTP/1.x traffic and all versions of Envoy for HTTP/2 traffic had...

7.8CVSS7.5AI score0.65393EPSS
Exploits0References3
CVE
CVE
added 2019/10/09 3:25 p.m.79 views

CVE-2019-15226

CVE-2019-15226 affects Envoy: HTTP/1.x traffic (versions 1.10.0–1.11.1) and all HTTP/2 traffic. The header validation loop has O(n^2) complexity, enabling a remote attacker to construct many small headers below the maximum size to exhaust CPU and cause a denial of service. The available sources d...

7.8CVSS7.7AI score0.65393EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder