Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OpenVAS
OpenVASadded 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2021:0931-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.01247EPSS
Exploits0References5
OpenVAS
OpenVASadded 2021/04/16 12:0 a.m.15 views

openSUSE: Security Advisory for nghttp2 (openSUSE-SU-2021:0468-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.01247EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2021/03/26 12:0 a.m.56 views

SUSE SLES15 Security Update : nghttp2 (SUSE-SU-2021:0931-1)

This update for nghttp2 fixes the following issues : CVE-2020-11080: HTTP/2 Large Settings Frame DoS bsc1181358 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as...

7.5CVSS6.8AI score0.01247EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linuxadded 2021/03/25 12:0 a.m.40 views

Security update for nghttp2 (important)

openSUSE Security Update: Security update for nghttp2 Announcement ID: openSUSE-SU-2021:0468-1 Rating: important References: 1172442 1181358 Cross-References: CVE-2020-11080 CVSS scores: CVE-2020-11080 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2020-11080 SUSE: 7.5...

7.5CVSS6.4AI score0.01247EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2020/07/21 7:32 p.m.4 views

nghttp2: overly large SETTINGS frames can lead to DoS

A resource consumption vulnerability was found in nghttp2. This flaw allows an attacker to repeatedly construct an overly large HTTP/2 SETTINGS frame with a length of 14,400 bytes that causes excessive CPU usage, leading to a denial of service...

7.5CVSS7.2AI score0.01247EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/06/22 12:28 p.m.3 views

nghttp2: overly large SETTINGS frames can lead to DoS

A resource consumption vulnerability was found in nghttp2. This flaw allows an attacker to repeatedly construct an overly large HTTP/2 SETTINGS frame with a length of 14,400 bytes that causes excessive CPU usage, leading to a denial of service...

7.5CVSS7.2AI score0.01247EPSS
Exploits0References5
Hacker One
Hacker Oneadded 2018/11/18 12:19 p.m.12 views

Node.js: Node.js HTTP/2 Large Settings Frame DoS

Hi, I would like to report a vulnerability in the http2 module of Node.js. In section 10.5 of the HTTP/2 RFC an attack is described where an attacker is sending large SETTINGS frames that includes many settings inside it. We tested this scenario by opening many connections to the server and sendi...

0.6AI score
Exploits0
Rows per page
Query Builder