Lucene search
K

6 matches found

OSV
OSV
added 2026/01/01 11:37 a.m.6 views

BIT-GITEA-2025-68946

In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS...

5.4CVSS6.8AI score0.00222EPSS
Exploits0References4
NVD
NVD
added 2021/12/16 5:15 a.m.14 views

CVE-2021-45098

An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it's possible to inject an RST ACK with a random TCP md5header option...

7.5CVSS0.01824EPSS
Exploits1References5
OSV
OSV
added 2021/12/16 5:15 a.m.1 views

DEBIAN-CVE-2021-45098

An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it's possible to inject an RST ACK with a random TCP md5header option...

7.5CVSS7.3AI score0.01824EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2021/12/16 5:15 a.m.17 views

CVE-2021-45098

An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it's possible to inject an RST ACK with a random TCP md5header option...

7.5CVSS7.1AI score0.01824EPSS
Exploits1References5
Prion
Prion
added 2021/12/16 5:15 a.m.19 views

Design/Logic Flaw

An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it's possible to inject an RST ACK with a random TCP md5header option...

5CVSS7.5AI score0.01824EPSS
Exploits1References4Affected Software2
Debian CVE
Debian CVE
added 2021/12/16 4:7 a.m.26 views

CVE-2021-45098

An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of the md5header from the client side. After the three-way handshake, it's possible to inject an RST ACK with a random TCP md5header option...

7.5CVSS7.5AI score0.01824EPSS
Exploits1
Rows per page
Query Builder