Lucene search
+L

5 matches found

Tenable Nessus
Tenable Nessus
added 2024/03/30 12:0 a.m.22 views

FreeBSD : quiche -- Multiple Vulnerabilities (34f98d06-eb56-11ee-8007-6805ca2fa271)

"The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 34f98d06-eb56-11ee-8007-6805ca2fa271 advisory. - Cloudflare quiche was discovered to be vulnerable to unbounded storage of information relat...

7.5CVSS5.2AI score0.01175EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/03/12 6:6 p.m.27 views

CVE-2024-1410 Unbounded storage of information related to connection ID retirement, in quiche

Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1...

3.7CVSS4.8AI score0.00662EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/12 6:6 p.m.10 views

CVE-2024-1410 Unbounded storage of information related to connection ID retirement, in quiche

Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1...

3.7CVSS7AI score0.00662EPSS
Exploits0References1
CVE
CVE
added 2024/03/12 6:6 p.m.76 views

CVE-2024-1410

CVE-2024-1410 affects Cloudflare quiche, an open-source QUIC implementation. The issue is unbounded storage of information related to connection ID retirement, where an unauthenticated attacker can cause RETIRE_CONNECTION_ID frames to arrive faster than they can be retired, potentially overflowin...

5.3CVSS4.3AI score0.00662EPSS
Exploits0References1Affected Software1
FreeBSD
FreeBSD
added 2024/03/12 12:0 a.m.49 views

quiche -- Multiple Vulnerabilities

Quiche Releases reports: This release includes 2 security fixes: CVE-2024-1410: Unbounded storage of information related to connection ID retirement, in quiche. Reported by Marten Seeman @marten-seeman CVE-2024-1765: Unlimited resource allocation by QUIC CRYPTO frames flooding in quiche. Reported...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References1
Rows per page
Query Builder