10 matches found
EUVD-2023-42307
Malicious code in bioql PyPI...
CVE-2023-38505
DietPi-Dashboard is a web dashboard for the operating system DietPi. The dashboard only allows for one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will assume that it should be waiting for a handshake, and will stay this way indefinitel...
CVE-2023-38505
DietPi-Dashboard is a web dashboard for the operating system DietPi. The dashboard only allows for one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will assume that it should be waiting for a handshake, and will stay this way indefinitel...
Design/Logic Flaw
DietPi-Dashboard is a web dashboard for the operating system DietPi. The dashboard only allows for one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will assume that it should be waiting for a handshake, and will stay this way indefinitel...
CVE-2023-38505 DietPi-Dashboard Insufficient TLS Handshake Pool
DietPi-Dashboard is a web dashboard for the operating system DietPi. The dashboard only allows for one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will assume that it should be waiting for a handshake, and will stay this way indefinitel...
CVE-2023-38505
DietPi-Dashboard (DietPi) suffers from an insufficient TLS handshake pool: when a TCP connection is established in HTTPS, the service waits for a handshake indefinitely, blocking all other TLS handshakes. In v0.6.1 this can be triggered by not starting the handshake, effectively denying legitimat...
CVE-2023-38505 DietPi-Dashboard Insufficient TLS Handshake Pool
DietPi-Dashboard is a web dashboard for the operating system DietPi. The dashboard only allows for one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will assume that it should be waiting for a handshake, and will stay this way indefinitel...
CVE-2023-38505 DietPi-Dashboard Insufficient TLS Handshake Pool
DietPi-Dashboard is a web dashboard for the operating system DietPi. The dashboard only allows for one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will assume that it should be waiting for a handshake, and will stay this way indefinitel...
DietPi-Dashboard 安全漏洞
DietPi-Dashboard is a component of the DietPi operating system that provides a web-based user interface for managing and monitoring DietPi installed devices. A security vulnerability exists in DietPi-Dashboard that stems from the fact that the Dashboard only allows one TLS handshake at a given...
PT-2023-26485 · Unknown · Dietpi-Dashboard
Name of the Vulnerable Software and Affected Versions: DietPi-Dashboard version 0.6.1 Description: The DietPi-Dashboard has a limitation where it only allows one TLS handshake to be in process at a given moment. Once a TCP connection is established in HTTPS mode, it will wait indefinitely for a...