Lucene search
K

292 matches found

CNNVD
CNNVD
added 2026/01/31 12:0 a.m.5 views

Linux Kernel Security Vulnerabilities

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to clean up the flow control list during module removal, potentially leading to memor...

5.5CVSS6AI score0.00132EPSS
Exploits0References3
Redos
Redos
added 2026/01/12 12:0 a.m.7 views

ROS-20260112-7385

A vulnerability in the mptcppmnlrmaddrorsubflow function of the Linux kernel is related to incorrect flow control. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.5AI score0.0022EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.6 views

CVE-2019-18278

When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqtplugin!vlcentrylicense300f+0x00000000003b9aba. NOTE: the VideoLAN security team indicates that they have not been contacted, and have no way of reproducing this...

7.8CVSS7.1AI score0.0042EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:32 a.m.4 views

CVE-2019-16899

In Advantech WebAccess/HMI Designer 2.1.9.31, Data from a Faulting Address controls Code Flow starting at PMV3!CTagInfoThreadBase::GetNICInfo+0x0000000000512918...

7.5CVSS7.1AI score0.01323EPSS
Exploits0References1
OSV
OSV
added 2025/11/17 10:17 a.m.7 views

CLSA-2025-1763374645 varnish: Fix of 2 CVEs

CVE-2024-30156: fix HTTP/2 flow control vulnerability allowing window credit exhaustion Broke Window Attack causing potential denial of service - CVE-2025-47905: fix client-side request smuggling via malformed HTTP/1 chunked requests...

7.5CVSS6.7AI score0.03663EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/10/22 11:23 p.m.6 views

SUSE CVE-2025-62409

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

7.5CVSS7AI score0.00415EPSS
Exploits0References2
OSV
OSV
added 2025/10/21 8:41 a.m.7 views

BIT-ENVOY-2025-62409 Envoy allows large requests and responses to cause TCP connection pool crash

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

8.7CVSS7AI score0.00415EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/16 6:43 p.m.3 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the flow control management process while overriding onAboveWriteBufferHighWatermark and onBelowWriteBufferLowWatermark callbacks. An attacker can cause a crash of the TCP connection pool by sending large...

8.7CVSS7.1AI score0.00415EPSS
Exploits0References2
NVD
NVD
added 2025/10/16 6:15 p.m.11 views

CVE-2025-62409

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

8.7CVSS0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/16 5:47 p.m.4 views

CVE-2025-62409 Envoy allows large requests and responses to cause TCP connection pool crash

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

8.7CVSS6.6AI score0.00415EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/16 5:47 p.m.7 views

EUVD-2025-34820

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

8.7CVSS6.4AI score0.00415EPSS
Exploits0References1
CVE
CVE
added 2025/10/16 5:47 p.m.15 views

CVE-2025-62409

CVE-2025-62409 affects Envoy, where large requests/responses can trigger TCP connection pool crashes due to flow-control handling when the connection is closing but upstream data still arrives, causing a buffer watermark callback nullptr reference. Affected products include the Envoy core with TC...

8.7CVSS6.6AI score0.00415EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/10/16 5:47 p.m.5 views

CVE-2025-62409 Envoy allows large requests and responses to cause TCP connection pool crash

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

8.7CVSS7AI score0.00415EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.5 views

Envoy 安全漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A security vulnerability exists in Envoy versions prior to 1.36.1, prior to 1.35.5, prior to 1.34.9, and prior to 1.33.10, which stems from improper management of flow control and could result in a crash of the TCP...

8.7CVSS6.4AI score0.00415EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-1143

Malware in sbrugna...

8.6CVSS8.5AI score0.02429EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-17270

Malware in sbrugna...

5.9CVSS5.9AI score0.01409EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-20226

Malware in sbrugna...

6.5CVSS6.5AI score0.00861EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-2692

Malware in sbrugna...

7.8CVSS7.6AI score0.00246EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-0919

Malware in sbrugna...

4.4CVSS5.2AI score0.0045EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-5463

Malware in sbrugna...

5CVSS8.9AI score0.03146EPSS
Exploits0References11
Rows per page
Query Builder