3 matches found
Tenable.ad < 3.59.5 Multiple Vulnerabilities (TNS-2024-11)
The version of Tenable.ad installed on the remote host is prior to 3.59.5. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-11 advisory. - The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of...
CVE-2024-32976 Envoy can enter an endless loop while decompressing Brotli data with extra input
Envoy is a cloud-native, open source edge and service proxy. Envoyproxy with a Brotli filter can get into an endless loop during decompression of Brotli data with extra input...
CVE-2024-32976
CVE-2024-32976 affects Envoy’s Brotli decompressor. The Brotli filter can enter an endless loop during decompression when given extra input, potentially enabling denial-of-service. Connected advisories note this issue alongside other Envoy CVEs and list mitigations that include upgrading Envoy to...