Lucene search
+L

8 matches found

OSV
OSV
added 2023/12/15 11:6 a.m.5 views

OESA-2023-1915 varnish security update

This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...

7.5CVSS7AI score0.0121EPSS
Exploits0References2
OSV
OSV
added 2023/12/15 11:6 a.m.5 views

OESA-2023-1917 varnish security update

This is Varnish Cache, a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x,...

7.5CVSS7AI score0.0121EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.5 views

SUSE CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...

7.5CVSS7.5AI score0.0121EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/12/22 12:0 a.m.30 views

Fedora 35 : varnish (2022-99c5ddb2ae)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-99c5ddb2ae advisory. This is a security update adding fixes for the following issues VSV00009 aka CVE-2022-38150: Denial of service VSV00010 aka CVE-2022-45059: Request...

7.5CVSS7.3AI score0.0121EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/11/26 12:0 a.m.21 views

Fedora: Security Advisory for varnish (FEDORA-2022-99c5ddb2ae)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.0121EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/11/09 12:0 a.m.8 views

CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...

7.1AI score0.0121EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/11/09 12:0 a.m.38 views

CVE-2022-45059

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend...

7.6AI score0.0121EPSS
Exploits0References4
CVE
CVE
added 2022/11/09 12:0 a.m.95 views

CVE-2022-45059

CVE-2022-45059 (VSV00010) affects Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request-smuggling vulnerability arises when certain headers are treated as hop-by-hop, preventing Varnish from forwarding critical headers (e.g., Content-Length, Host) to the backend. This can break HTTP/1 ...

7.5CVSS7.2AI score0.0121EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder