CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4432 matches found

OpenVAS•added 2021/06/09 12:0 a.m.•32 views

SUSE: Security Advisory (SUSE-SU-2019:1693-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.72855EPSS

Exploits3References2

OpenVAS•added 2021/06/09 12:0 a.m.•30 views

SUSE: Security Advisory (SUSE-SU-2021:0930-1)

7.5CVSS7.9AI score0.05316EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•25 views

SUSE: Security Advisory (SUSE-SU-2020:3069-1)

4.3CVSS5.1AI score0.57286EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•31 views

SUSE: Security Advisory (SUSE-SU-2021:0041-1)

7.5CVSS7.7AI score0.24622EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•21 views

SUSE: Security Advisory (SUSE-SU-2020:3068-1)

4.3CVSS5.1AI score0.57286EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•21 views

SUSE: Security Advisory (SUSE-SU-2020:1962-1)

7.5CVSS7.7AI score0.26699EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•31 views

SUSE: Security Advisory (SUSE-SU-2021:0042-1)

7.5CVSS7.7AI score0.24622EPSS

Exploits0References2

OpenVAS•added 2021/06/09 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2019:1825-1)

7.5CVSS7.7AI score0.72855EPSS

Exploits0References2

IBM Security Bulletins•added 2021/06/08 10:33 p.m.•25 views

Security Bulletin: Denial of Service with HTTP/2 in IBM DataPower Gateway (CVE-2020-4581)

Summary IBM has addressed the relevant CVE CVE-2020-4581 Vulnerability Details CVEID: CVE-2020-4581 DESCRIPTION: IBM DataPower Gateway could allow a remote attacker to cause a denial of service by sending a chunked transfer-encoding HTTP/2 request. CVSS Base score: 7.5 CVSS Temporal Score: See:...

7.5CVSS2.5AI score0.01602EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/08 10:33 p.m.•30 views

Security Bulletin: Denial of Service with HTTP/2 in IBM DataPower Gateway (CVE-2020-4579)

Summary IBM has addressed the relevant CVE CVE-2020-4579 Vulnerability Details CVEID: CVE-2020-4579 DESCRIPTION: IBM DataPower Gateway could allow a remote attacker to cause a denial of service by sending a specially crafted HTTP/2 request with invalid characters. CVSS Base score: 7.5 CVSS Tempor...

7.5CVSS2.6AI score0.0224EPSS

Exploits0Affected Software1

OPENSUSE Linux•added 2021/06/04 12:0 a.m.•42 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0840-1 Rating: important References: 1186458 Cross-References: CVE-2021-21212 CVE-2021-30521 CVE-2021-30522 CVE-2021-30523 CVE-2021-30524 CVE-2021-30525 CVE-2021-30526 CVE-2021-30527 CVE-2021-30528...

8.8CVSS7.3AI score0.16611EPSS

Exploits19References1

OPENSUSE Linux•added 2021/06/02 12:0 a.m.•44 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0825-1 Rating: important References: 1186458 Cross-References: CVE-2021-21212 CVE-2021-30521 CVE-2021-30522 CVE-2021-30523 CVE-2021-30524 CVE-2021-30525 CVE-2021-30526 CVE-2021-30527 CVE-2021-30528...

8.8CVSS7.3AI score0.16611EPSS

Exploits19References1

Tenable Nessus•added 2021/05/26 12:0 a.m.•84 views

Juniper Junos OS Multiple DoS Vulnerabilities (JSA11167)

The version of Junos OS installed on the remote host is affected by multiple denial of service vulnerabilities as referenced in the JSA11167 advisory: - Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial o...

7.8CVSS7.4AI score0.87806EPSS

Exploits1References9

RedHat Linux•added 2021/05/20 5:49 p.m.•299 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.4.7 security update

A security update is now available for Red Hat Single Sign-On 7.4 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.1CVSS6.6AI score0.18891EPSS

Exploits1References7

NVD•added 2021/05/14 1:15 a.m.•12 views

CVE-2021-31922

An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could allow an attacker to smuggle an HTTP request through an HTTP/2 Header. This vulnerability is resolved in 21.1, 20.3R1, 20.2R1, 20.1R2, 19.2R4, and 18.2R3...

7.5CVSS0.00973EPSS

Exploits1References1

Prion•added 2021/05/14 1:15 a.m.•15 views

Design/Logic Flaw

5CVSS7.4AI score0.00973EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/05/14 12:41 a.m.•18 views

CVE-2021-31922

7.6AI score0.00973EPSS

Exploits1References1

Positive Technologies•added 2021/05/11 12:0 a.m.•10 views

PT-2021-3858 · Apache +9 · Apache Http Server +9

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server versions 2.4.17 through 2.4.48 Description: A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod proxy, which can lead to request splitting or cache poisoning. This issue is related to...

10CVSS7.9AI score0.99999EPSS

Exploits233References272

NVD•added 2021/05/10 3:15 p.m.•24 views

CVE-2021-23009

On BIG-IP version 16.0.x before 16.0.1.1 and 15.1.x before 15.1.3, malformed HTTP/2 requests may cause an infinite loop which causes a Denial of Service for Data Plane traffic. TMM takes the configured HA action when the TMM process is aborted. There is no control plane exposure, this is a data...

7.5CVSS0.00988EPSS

Exploits0References1

Cvelist•added 2021/05/10 2:18 p.m.•22 views

CVE-2021-23009

7.8AI score0.00988EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by