CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в firefox, nss

Calling PK11Encrypt in NSS using CKMCHACHA20 and the same buffer for input and output can result in plaintext on an Intel Sandy Bridge processor. In Firefox, this only affects the QUIC header protection feature when the connection uses the ChaCha20-Poly1305 cipher suite. The most likely outcome i...

6.5CVSS6.7AI score0.00062EPSS

Exploits0References2

SUSE CVE•added 2026/03/07 12:25 a.m.•2 views

SUSE CVE-2026-29054

Traefik is an HTTP reverse proxy and load balancer. From version 2.11.9 to 2.11.37 and from version 3.1.3 to 3.6.8, there is a potential vulnerability in Traefik managing the Connection header with X-Forwarded headers. When Traefik processes HTTP/1.1 requests, the protection put in place to preve...

7.5CVSS5.8AI score0.00014EPSS

Exploits0References4

OSV•added 2026/03/05 4:18 p.m.•3 views

CVE-2026-29054 Traefik: lowercase `Connection` tokens can delete traefik-managed forwarded identity headers (for example, `X-Real-Ip`)

7.5CVSS7.1AI score0.00014EPSS

Exploits0References5

Vulnrichment•added 2026/03/05 4:18 p.m.•0 views

CVE-2026-29054 Traefik: lowercase `Connection` tokens can delete traefik-managed forwarded identity headers (for example, `X-Real-Ip`)

7.5CVSS5.7AI score0.00014EPSS

Exploits0References3

Github Security Blog•added 2026/03/04 9:19 p.m.•2 views

traefik CVE-2024-45410 fix bypass: lowercase `Connection` tokens can delete traefik-managed forwarded identity headers (for example, `X-Real-Ip`)

Impact There is a potential vulnerability in Traefik managing the Connection header with X-Forwarded headers. When Traefik processes HTTP/1.1 requests, the protection put in place to prevent the removal of Traefik-managed X-Forwarded headers such as X-Real-Ip, X-Forwarded-Host, X-Forwarded-Port,...

9.8CVSS6AI score0.13949EPSS

Exploits0References5Affected Software2

Packet Storm News•added 2026/02/16 12:0 a.m.•2 views

OpenSSL 3.x QUIC Initial Packet Builder / Sender

This script is a proof of concept QUIC client that constructs fully encrypted initial packets with header protection. It can be used for testing or fuzzing QUIC/TLS 1.3 implementations. The script constructs and sends a cryptographically valid QUIC Initial packet over UDP. It simulates a QUIC...

5.5AI score

Exploits0

OSV•added 2024/12/10 11:15 p.m.•1 views

DEBIAN-CVE-2024-54133

Action Pack is a framework for handling and responding to web requests. There is a possible Cross Site Scripting XSS vulnerability in the contentsecuritypolicy helper starting in version 5.2.0 of Action Pack and prior to versions 7.0.8.7, 7.1.5.1, 7.2.2.1, and 8.0.0.1. Applications which set...

2.3CVSS4.9AI score0.0019EPSS

Exploits0References1

RedHat Linux•added 2024/09/19 11:29 a.m.•3 views

mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

The Mozilla Foundation Security Advisory describes this flaw as: Calling PK11Encrypt in NSS using CKMCHACHA20 and the same buffer for input and output can result in plaintext on Intel Sandy Bridge and later processors. In Firefox this only affects the QUIC header protection feature when the...

6.5CVSS7.4AI score0.00062EPSS

Exploits0References5

RedhatCVE•added 2024/08/07 4:9 p.m.•19 views

CVE-2024-7531

3.1CVSS7.5AI score0.00062EPSS

Exploits0References4

SUSE CVE•added 2024/08/07 2:54 a.m.•3 views

SUSE CVE-2024-7531

Calling PK11Encrypt in NSS using CKMCHACHA20 and the same buffer for input and output can result in plaintext on an Intel Sandy Bridge processor. In Firefox this only affects the QUIC header protection feature when the connection is using the ChaCha20-Poly1305 cipher suite. The most likely outcom...

4.2CVSS6.3AI score0.00062EPSS

Exploits0References6

NVD•added 2024/08/06 1:15 p.m.•16 views

CVE-2024-7531

6.5CVSS0.00062EPSS

Exploits0References4

OSV•added 2024/08/06 1:15 p.m.•12 views

CVE-2024-7531

6.5CVSS6AI score

Exploits0References4

AlpineLinux•added 2024/08/06 1:15 p.m.•28 views

CVE-2024-7531

6.2AI score0.00062EPSS

Exploits0

UbuntuCve•added 2024/08/06 1:15 p.m.•15 views

CVE-2024-7531

6.5CVSS6.9AI score0.00062EPSS

Exploits0References8

CVE•added 2024/08/06 12:38 p.m.•296 views

CVE-2024-7531

CVE-2024-7531 involves Mozilla Firefox and Firefox ESR. The connected documents confirm the underlying vulnerability: calling PK11_Encrypt() in NSS with CKM_CHACHA20 and using the same buffer for input and output can expose plaintext on Intel Sandy Bridge CPUs. In Firefox, the impact is limited t...

6.5CVSS6.4AI score0.00062EPSS

Exploits0References4Affected Software2

Vulnrichment•added 2024/08/06 12:38 p.m.•16 views

CVE-2024-7531

6.1AI score0.00062EPSS

Exploits0References4

Cvelist•added 2024/08/06 12:38 p.m.•16 views

CVE-2024-7531

0.00062EPSS

Exploits0References4

CVE•added 2021/03/15 2:42 p.m.•55 views

CVE-2021-26924

Argo CD

6.1CVSS5.9AI score0.0024EPSS

Exploits0References2Affected Software1

CNNVD•added 2020/12/29 12:0 a.m.•2 views

Vidyo 安全漏洞

Vidyo is a software used to support video conferencing from Vidyo, Inc. in the United States. A clickjacking vulnerability exists in Vidyo version 02-09-/D. The vulnerability stems from the absence of protection such as X-Frame-Options, which could be exploited by an attacker to achieve...

4.7CVSS5.8AI score0.00214EPSS

Exploits1References3

NVD•added 2020/11/18 2:15 p.m.•10 views

CVE-2020-28361

Kamailio before 5.4.0, as used in Sip Express Router SER in Sippy Softswitch 4.5 through 5.2 and other products, allows a bypass of a header-removal protection mechanism via whitespace characters. This occurs in the removehf function in the Kamailio textops module. Particular use of removehf in...

5.5CVSS5.4AI score0.00208EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by