Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

40 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-48194

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00038EPSS
Exploits1References1
OpenVAS
OpenVASadded 2025/06/04 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2024:4401-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.00045EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2025/02/12 12:11 a.m.3 views

grpc: client communicating with a HTTP/2 proxy can poison the HPACK table between the proxy and the backend

A flaw was found in Google gRPC due to HPACK table poisoning between the proxy and backend so that other clients see failed requests, resulting in a denial of service. This occurs because the error status for a misencoded header is not cleared between header reads, resulting in subsequent...

6.3CVSS5.7AI score0.00038EPSS
Exploits1References5
OSV
OSVadded 2024/12/30 1:23 p.m.13 views

SUSE-SU-2024:4436-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00045EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2024/12/28 12:0 a.m.15 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-grpcio (SUSE-SU-2024:4429-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4429-1 advisory. - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 -...

7.5CVSS6.7AI score0.00045EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2024/12/28 12:0 a.m.12 views

SUSE SLES15 Security Update : python-grpcio (SUSE-SU-2024:4428-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4428-1 advisory. - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by...

7.5CVSS6.7AI score0.00045EPSS
Exploits1References7
OSV
OSVadded 2024/12/27 10:16 a.m.6 views

SUSE-SU-2024:4429-1 Security update for python-grpcio

This update for python-grpcio fixes the following issues: - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919...

7.5CVSS8.1AI score0.00045EPSS
Exploits1References5
OSV
OSVadded 2024/12/27 10:16 a.m.6 views

SUSE-SU-2024:4428-1 Security update for python-grpcio

This update for python-grpcio fixes the following issues: - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919...

7.5CVSS8.1AI score0.00045EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2024/12/21 12:0 a.m.14 views

SUSE SLES15 / openSUSE 15 Security Update : python-grpcio (SUSE-SU-2024:4393-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4393-1 advisory. - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table...

7.5CVSS6.7AI score0.00045EPSS
Exploits1References7
OpenVAS
OpenVASadded 2024/12/21 12:0 a.m.14 views

openSUSE Security Advisory (SUSE-SU-2024:4393-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.00045EPSS
Exploits1References5
OSV
OSVadded 2024/12/20 3:27 p.m.18 views

SUSE-SU-2024:4401-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00045EPSS
Exploits1References5
OSV
OSVadded 2024/12/20 3:27 p.m.17 views

SUSE-SU-2024:4400-1 Security update for grpc

This update for grpc fixes the following issues: - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919 - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821...

7.5CVSS7.1AI score0.00045EPSS
Exploits1References5
OSV
OSVadded 2024/12/20 10:24 a.m.3 views

SUSE-SU-2024:4393-1 Security update for python-grpcio

This update for python-grpcio fixes the following issues: - CVE-2024-11407: data corruption on servers with transmit zero copy enabled. bsc1233821 - CVE-2024-7246: HPACK table poisoning by gRPC clients communicating with a HTTP/2 proxy. bsc1228919...

7.5CVSS8.1AI score0.00045EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2024/12/11 12:0 a.m.14 views

Amazon Linux 2023 : grpc, grpc-cpp, grpc-data (ALAS2023-2024-769)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-769 advisory. It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that other clients see failed requests. It's also possible to use this...

6.3CVSS6.4AI score0.00038EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2024/12/03 4:21 p.m.23 views

Important: Red Hat Security Advisory: rhc-worker-playbook security update

An update for rhc-worker-playbook is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.9AI score0.00184EPSS
Exploits1References5
Veracode
Veracodeadded 2024/08/07 5:41 a.m.17 views

Information Disclosure

libgrpc.so is vulnerable to Information Disclosure. The vulnerability is due to an error status for a misencoded header not cleared between header reads, resulting in subsequent incrementally indexed added headers in the first request being poisoned until cleared from the HPACK table. This can be...

6.3CVSS6.5AI score0.00038EPSS
Exploits1References2Affected Software4
RedhatCVE
RedhatCVEadded 2024/08/06 1:21 p.m.12 views

CVE-2024-7246

A flaw was found in Google gRPC due to HPACK table poisoning between the proxy and backend so that other clients see failed requests, resulting in a denial of service. This occurs because the error status for a misencoded header is not cleared between header reads, resulting in subsequent...

4.8CVSS8.9AI score0.00038EPSS
Exploits1References4
OSV
OSVadded 2024/08/06 11:16 a.m.1 views

DEBIAN-CVE-2024-7246

It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that other clients see failed requests. It's also possible to use this vulnerability to leak other clients HTTP header keys, but not values. This occurs because the...

5.3CVSS6.4AI score0.00038EPSS
Exploits1References1
NVD
NVDadded 2024/08/06 11:16 a.m.21 views

CVE-2024-7246

It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that other clients see failed requests. It's also possible to use this vulnerability to leak other clients HTTP header keys, but not values. This occurs because the...

6.3CVSS0.00038EPSS
Exploits1References1
OSV
OSVadded 2024/08/06 11:16 a.m.13 views

CVE-2024-7246

It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that other clients see failed requests. It's also possible to use this vulnerability to leak other clients HTTP header keys, but not values. This occurs because the...

5.3CVSS6.5AI score
Exploits0References1
Rows per page
Query Builder