EUVD-2025-4635

Malicious code in bioql PyPI...

Litespeed Technologie LiteSpeed QUIC 安全漏洞

Litespeed Technologie LiteSpeed QUIC LSQUIC is an open source implementation of QUIC and HTTP/3 functionality for servers and clients from Litespeed Technologie, USA. A security vulnerability exists in Litespeed Technologie LiteSpeed QUIC versions prior to 4.3.1, which stems from a memory leak in...

PT-2025-31606 · Litespeed · Litespeed Quic

Name of the Vulnerable Software and Affected Versions: LiteSpeed QUIC LSQUIC Library versions prior to 4.3.1 Description: The LiteSpeed QUIC LSQUIC Library contains a memory leak in the lsquic engine packet in function. Recommendations: Update to LiteSpeed QUIC LSQUIC Library version 4.3.1 or lat...

CVE-2025-24947

A hash collision vulnerability in the hash table used to manage connections in LSQUIC aka LiteSpeed QUIC before 4.2.0 allows remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs. This is caused by...

CVE-2025-24947

A hash collision vulnerability in the hash table used to manage connections in LSQUIC aka LiteSpeed QUIC before 4.2.0 allows remote attackers to cause a considerable CPU load on the server a Hash DoS attack by initiating connections with colliding Source Connection IDs SCIDs. This is caused by...

CVE-2024-25678

In LiteSpeed QUIC LSQUIC Library before 4.0.4, DCID validation is mishandled...

CVE-2024-25678

Summary: CVE-2024-25678 affects the LiteSpeed QUIC (LSQUIC) Library prior to 4.0.4, due to mishandled DCID validation. The issue is tied to the authentication/DCID handling behavior in LSQUIC. Affected software: LiteSpeed QUIC (LSQUIC) Library versions before 4.0.4. Root cause (as stated): Mishan...

CVE-2022-30592

liblsquic/lsquicqenchdl.c in LiteSpeed QUIC aka LSQUIC before 3.1.0 mishandles MAXTABLECAPACITY...

CVE-2022-30592

liblsquic/lsquicqenchdl.c in LiteSpeed QUIC aka LSQUIC before 3.1.0 mishandles MAXTABLECAPACITY...

CVE-2022-30592

CVE-2022-30592 affects LiteSpeed QUIC (LSQUIC) before 3.1.0 due to a flaw in liblsquic/lsquic_qenc_hdl.c that mishandles MAX_TABLE_CAPACITY. The issue is described across multiple sources as a vulnerability in the QUIC implementation, with affected versions prior to 3.1.0. The exact exploitation ...

PT-2022-20195 · Litespeed · Litespeed Quic

Name of the Vulnerable Software and Affected Versions: LiteSpeed QUIC aka LSQUIC versions prior to 3.1.0 Description: The issue arises from the mishandling of MAX TABLE CAPACITY in liblsquic/lsquic qenc hdl.c. No information is provided about the estimated number of potentially affected devices...

LiteSpeed QUIC 代码问题漏洞

LiteSpeed QUIC LSQUIC is an open source implementation of QUIC and HTTP/3 functionality for servers and clients from LiteSpeed USA. A security vulnerability exists in LiteSpeed QUIC versions prior to 31.0 that stems from liblsquic/lsquicqenchdl.c incorrectly handling MAXTABLECAPACITY...