CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

SUSE CVE•added 2023/02/15 5:11 a.m.•3 views

SUSE CVE-2015-8659

The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free bug...

10CVSS7.2AI score0.04073EPSS

Exploits0References3

NVD•added 2016/01/12 7:59 p.m.•16 views

CVE-2015-8659

The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free bug...

10CVSS7.5AI score0.04073EPSS

Exploits0References15

OSV•added 2016/01/12 7:59 p.m.•1 views

DEBIAN-CVE-2015-8659

The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free bug...

10CVSS9.1AI score0.04073EPSS

Exploits0References1

Prion•added 2016/01/12 7:59 p.m.•21 views

Design/Logic Flaw

The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free bug...

10CVSS9.5AI score0.04073EPSS

Exploits0References15Affected Software5

OSV•added 2016/01/12 7:59 p.m.•2 views

UBUNTU-CVE-2015-8659

The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free bug...

10CVSS7.4AI score0.04073EPSS

Exploits0References3

ArchLinux•added 2015/12/25 12:0 a.m.•33 views

nghttp2: use-after-free

nghttp2 1.6.0 fixes a heap-based use-after-free bug in idle stream handling code, where an idle/closed stream could possibly be destroyed while it was still referenced...

10CVSS9.1AI score0.04073EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by