Lucene search
K

4433 matches found

RedHat Linux
RedHat Linux
added 2023/10/17 9:23 a.m.60 views

Important: Red Hat Security Advisory: nghttp2 security update

An update for nghttp2 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References3
RedHat Linux
RedHat Linux
added 2023/10/17 9:22 a.m.59 views

Important: Red Hat Security Advisory: nodejs security update

An update for nodejs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7AI score0.99999EPSS
Exploits19References3
RedHat Linux
RedHat Linux
added 2023/10/17 9:19 a.m.75 views

Important: Red Hat Security Advisory: nghttp2 security update

An update for nghttp2 is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7AI score0.99999EPSS
Exploits19References3
RedHat Linux
RedHat Linux
added 2023/10/17 9:14 a.m.50 views

Important: Red Hat Security Advisory: nodejs security update

An update for nodejs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7AI score0.99999EPSS
Exploits19References3
hivepro
hivepro
added 2023/10/17 9:10 a.m.78 views

Attacks, Vulnerabilities and Actors 9 October to 15 October 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of twenty executed attacks, two instance of adversary activity, and fourteen vulnerabilitie...

5CVSS7.6AI score0.99999EPSS
Exploits19
NVD
NVD
added 2023/10/17 7:15 a.m.15 views

CVE-2023-39456

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5CVSS7.6AI score0.53477EPSS
Exploits0References5
OSV
OSV
added 2023/10/17 7:15 a.m.28 views

CVE-2023-39456

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5CVSS7.5AI score
Exploits0References5
OSV
OSV
added 2023/10/17 7:15 a.m.2 views

DEBIAN-CVE-2023-39456

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5CVSS7.2AI score0.53477EPSS
Exploits0References1
Prion
Prion
added 2023/10/17 7:15 a.m.19 views

Input validation

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

5CVSS7.5AI score0.53477EPSS
Exploits0References5Affected Software2
UbuntuCve
UbuntuCve
added 2023/10/17 7:15 a.m.17 views

CVE-2023-39456

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5CVSS7AI score0.53477EPSS
Exploits0References2
CVE
CVE
added 2023/10/17 6:58 a.m.138 views

CVE-2023-39456

CVE-2023-39456 affects Apache Traffic Server (ATS) before version 9.2.3. The issue is an improper input validation vulnerability triggered by malformed HTTP/2 frames, impacting ATS releases 9.0.0 through 9.2.2. Upgrading to ATS 9.2.3 is recommended and fixes the issue. The CVSS base metrics quote...

7.5CVSS7.5AI score0.53477EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2023/10/17 6:58 a.m.20 views

CVE-2023-39456 Apache Traffic Server: Malformed http/2 frames can cause an abort

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.8AI score0.53477EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/10/17 6:58 a.m.25 views

CVE-2023-39456 Apache Traffic Server: Malformed http/2 frames can cause an abort

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5AI score0.53477EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2023/10/17 6:58 a.m.36 views

CVE-2023-39456

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5CVSS7.6AI score0.53477EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2023/10/17 6:58 a.m.21 views

CVE-2023-39456

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue...

7.5CVSS7.6AI score0.53477EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2023/10/17 2:37 a.m.195 views

Traefik vulnerable to HTTP/2 request causing denial of service

Impact A vulnerability CVE-2023-39325 exists in Go managing HTTP/2 requests, which impacts Traefik. This vulnerability could be exploited to cause a denial of service. References - CVE-2023-44487 - CVE-2023-39325 Patches - https://github.com/traefik/traefik/releases/tag/v2.10.5 -...

7.5CVSS7AI score0.03796EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/10/17 2:37 a.m.53 views

GHSA-7V4P-328V-8V5G Traefik vulnerable to HTTP/2 request causing denial of service

Impact A vulnerability CVE-2023-39325 exists in Go managing HTTP/2 requests, which impacts Traefik. This vulnerability could be exploited to cause a denial of service. References - CVE-2023-44487 - CVE-2023-39325 Patches - https://github.com/traefik/traefik/releases/tag/v2.10.5 -...

7.7AI score
Exploits0References3
OpenVAS
OpenVAS
added 2023/10/17 12:0 a.m.36 views

Debian: Security Advisory (DLA-3621-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.5AI score0.99999EPSS
Exploits19References6
OSV
OSV
added 2023/10/17 12:0 a.m.51 views

ALSA-2023:5765 Important: nodejs security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: nodejs: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 A AlmaLinux Security Bulleti...

7.5CVSS8.3AI score0.99999EPSS
Exploits19References4
Tenable Nessus
Tenable Nessus
added 2023/10/17 12:0 a.m.61 views

RHEL 9 : nodejs (RHSA-2023:5765)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:5765 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes...

7.5CVSS7.3AI score0.99999EPSS
Exploits19References5
Rows per page
Query Builder