Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2024/03/30 12:0 a.m.21 views

FreeBSD : quiche -- Multiple Vulnerabilities (34f98d06-eb56-11ee-8007-6805ca2fa271)

"The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 34f98d06-eb56-11ee-8007-6805ca2fa271 advisory. - Cloudflare quiche was discovered to be vulnerable to unbounded storage of information relat...

7.5CVSS5.2AI score0.01175EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/03/12 6:4 p.m.16 views

CVE-2024-1765 Unlimited resource allocation by QUIC CRYPTO frames flooding in quiche

Cloudflare Quiche through version 0.19.1/0.20.0 was affected by an unlimited resource allocation vulnerability causing rapid increase of memory usage of the system running quiche server or client. A remote attacker could take advantage of this vulnerability by repeatedly sending an unlimited numb...

5.9CVSS6.9AI score0.01175EPSS
Exploits0References1
CVE
CVE
added 2024/03/12 6:4 p.m.73 views

CVE-2024-1765

Cloudflare Quiche (up to 0.19.1/0.20.0) contains an unlimited resource allocation vulnerability where an attacker floods QUIC CRYPTO frames (1-RTT) after the QUIC handshake, causing rapid memory usage growth on the affected system. The issue affects both server and client implementations and coul...

7.5CVSS5.7AI score0.01175EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/03/12 6:4 p.m.4 views

CVE-2024-1765 Unlimited resource allocation by QUIC CRYPTO frames flooding in quiche

Cloudflare Quiche through version 0.19.1/0.20.0 was affected by an unlimited resource allocation vulnerability causing rapid increase of memory usage of the system running quiche server or client. A remote attacker could take advantage of this vulnerability by repeatedly sending an unlimited numb...

5.9CVSS6.3AI score0.01175EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2024/03/12 12:0 a.m.49 views

quiche -- Multiple Vulnerabilities

Quiche Releases reports: This release includes 2 security fixes: CVE-2024-1410: Unbounded storage of information related to connection ID retirement, in quiche. Reported by Marten Seeman @marten-seeman CVE-2024-1765: Unlimited resource allocation by QUIC CRYPTO frames flooding in quiche. Reported...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References1
Rows per page
Query Builder