Lucene search
+L

199 matches found

nessus
nessus
added 2026/06/27 12:0 a.m.6 views

SUSE SLES15 Security Update : haproxy (SUSE-SU-2026:2652-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2652-1 advisory. This update for haproxy fixes the following issues - CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that...

9.1CVSS6.1AI score0.00431EPSS
Exploits0References7
osv
osv
added 2026/06/26 12:18 p.m.3 views

SUSE-SU-2026:2651-1 Security update for haproxy

This update for haproxy fixes the following issues - CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that allows buffer misparse as new FCGI record headers bsc1268557. - CVE-2026-55204: null pointer dereference vulnerability in hpackdhtinsert within...

9.1CVSS6AI score0.00431EPSS
Exploits0References5
nessus
nessus
added 2026/06/23 12:0 a.m.6 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : HAProxy vulnerabilities (USN-8459-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8459-1 advisory. It was discovered that HAProxy incorrectly handled the FCGI demultiplexer record length field. A remote attacker could...

9.1CVSS6.1AI score0.00431EPSS
Exploits0References3
ubuntu
ubuntu
added 2026/06/22 1:55 p.m.7 views

USN-8459-1: HAProxy vulnerabilities

It was discovered that HAProxy incorrectly handled the FCGI demultiplexer record length field. A remote attacker could possibly use this issue to cause incorrect request routing, response smuggling, or other memory safety issues. CVE-2026-55203 It was discovered that HAProxy failed to validate th...

9.1CVSS5.9AI score0.00431EPSS
Exploits0
attackerkb
attackerkb
added 2026/06/18 4:5 p.m.9 views

CVE-2026-55203

HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgiconn structure's drl field that allows buffer misparse as new FCGI record headers. When contentLength is 65535 and paddingLength is 1 or more, the drl field wraps to 0, causing incorrect record...

9CVSS5.6AI score0.00321EPSS
Exploits0References3
cvelist
cvelist
added 2026/06/18 4:5 p.m.28 views

CVE-2026-55203 HAProxy - Integer Overflow in FCGI Demux Record Length Field

HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgiconn structure's drl field that allows buffer misparse as new FCGI record headers. When contentLength is 65535 and paddingLength is 1 or more, the drl field wraps to 0, causing incorrect record...

9CVSS0.00321EPSS
Exploits0References2
nessus
nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : perl-FCGI:0.78 (AXSA:2025-10019:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10019:01 advisory. perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library CVE-2025-40907 Tenable has extracte...

5.3CVSS5.6AI score0.00563EPSS
Exploits1References2
nessus
nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : perl-FCGI:0.78 (AXSA:2025-10020:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10020:01 advisory. perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library CVE-2025-40907 Tenable has extracte...

5.3CVSS6.2AI score0.00563EPSS
Exploits1References2
nessus
nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 9 : perl-FCGI-0.79-8.1.el9_6 (AXSA:2025-10601:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10601:01 advisory. perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library CVE-2025-40907 Tenable has extracte...

5.3CVSS6.1AI score0.00563EPSS
Exploits1References2
nessus
nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 8 : perl-FCGI:0.78 (AXSA:2025-10018:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10018:01 advisory. perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library CVE-2025-40907 Tenable has extracte...

5.3CVSS6.2AI score0.00563EPSS
Exploits1References2
fedora
fedora
added 2025/12/05 2:22 a.m.11 views

[SECURITY] Fedora 41 Update: fcgi-2.4.7-1.fc41

FastCGI is a language independent, scalable, open extension to CGI that provides high performance without the limitations of server specific APIs...

9.3CVSS6.9AI score0.00566EPSS
Exploits0
nessus
nessus
added 2025/12/05 12:0 a.m.6 views

Fedora 42 : fcgi (2025-d7c1457e7e)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d7c1457e7e advisory. 2.4.7 release, fixes CVE-2025-23016 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has no...

9.3CVSS8.1AI score0.00566EPSS
Exploits0References2
openvas
openvas
added 2025/12/05 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-93042e260c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.00566EPSS
Exploits0References3
openvas
openvas
added 2025/12/05 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2025-67511a59e3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.00566EPSS
Exploits0References3
openvas
openvas
added 2025/12/05 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-d7c1457e7e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.00566EPSS
Exploits0References3
osv
osv
added 2025/11/28 9:24 a.m.9 views

CLSA-2025-1764321881 perl-FCGI: Fix of CVE-2025-40907

CVE-2025-40907: fix integer overflow and heap-based buffer overflow in fcgi2 library...

5.3CVSS6.6AI score0.00563EPSS
Exploits1References1
nessus
nessus
added 2025/11/20 12:0 a.m.7 views

TencentOS Server 4: perl-FCGI (TSSA-2025:0476)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0476 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.3CVSS7.5AI score0.00566EPSS
Exploits1References3
nessus
nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 4: fcgi (TSSA-2025:0422)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0422 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.3CVSS7.4AI score0.00566EPSS
Exploits1References2
nessus
nessus
added 2025/10/09 12:0 a.m.8 views

AlmaLinux 10 : perl-FCGI (ALSA-2025:8636)

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:8636 advisory. perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library CVE-2025-40907 Tenable has extracted the...

5.3CVSS6.1AI score0.00563EPSS
Exploits1References3
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-2740

Malware in sbrugna...

7.5CVSS6AI score0.07238EPSS
Exploits1References15
Rows per page
Query Builder