Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.9 views

F5 Networks BIG-IP : BIG-IP HTTP non-RFC-compliant security exposure (K11342432)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.5.1 / 15.1.7 / 16.1.4 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K11342432 advisory. This issue occurs when a non-RFC-compliant HTTP request is received by a virtual server on a syste...

5.7AI score
Exploits0References1
F5 Networks
F5 Networks
added 2024/05/08 1:10 p.m.69 views

K11342432: BIG-IP HTTP non-RFC-compliant security exposure

Security Advisory Description This issue occurs when a non-RFC-compliant HTTP request is received by a virtual server on a system matching one of the following conditions: BIG-IP 15.1.0 and later version with a virtual server with an HTTP profile with Enforce RFC Compliance enabled. All supported...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2022/11/15 12:0 a.m.28 views

Debian: Security Advisory (DLA-3187-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01348EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/10/12 12:0 a.m.46 views

CVE-2021-36369

An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2...

7.8AI score0.01348EPSS
Exploits0References4
Veracode
Veracode
added 2021/12/27 12:41 a.m.34 views

Denial Of Service (DoS)

Undertow AJP connector is vulnerable to denial of service. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability...

7.5CVSS3.8AI score0.01269EPSS
Exploits0References6Affected Software19
NVD
NVD
added 2021/02/23 7:15 p.m.18 views

CVE-2020-27782

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability. This...

7.8CVSS0.01269EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/02/23 6:35 p.m.24 views

CVE-2020-27782

A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability. This...

7.8CVSS6AI score0.01269EPSS
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.24 views

CVE-2002-1775

NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus NAV 2002 allows remote attackers to bypass the initial virus scan and cause NAV to prematurely stop scanning by using a non-RFC compliant MIME header. NOTE: the vendor has disputed this issue, acknowledging that the initi...

7.5CVSS6.7AI score0.02574EPSS
Exploits0References4
Rows per page
Query Builder