Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-13456

Malware in sbrugna...

7.5CVSS6.6AI score0.03401EPSS
Exploits1References13
OSV
OSV
added 2023/09/08 5:15 p.m.4 views

UBUNTU-CVE-2023-39322

QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With fix, connections now consistently reject messages larger than 65KiB in size...

7.5CVSS6.8AI score0.01137EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2023/09/08 4:13 p.m.72 views

CVE-2023-39322

QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With fix, connections now consistently reject messages larger than 65KiB in size...

7.5CVSS7.8AI score0.01137EPSS
Exploits0
Snyk
Snyk
added 2023/09/07 4:12 p.m.2 views

Allocation of Resources Without Limits or Throttling

Overview std/crypto/tls is a Go standard library package std/crypto/tls Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling. Go Vulnerability Report: QUIC connections do not set an upper bound on the amount of data buffered when reading...

8.7CVSS6.8AI score0.01137EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/09/06 12:0 a.m.18 views

PT-2023-26883 · Quic +6 · Quic +6

Name of the Vulnerable Software and Affected Versions: QUIC affected versions not specified Description: The issue allows a malicious QUIC connection to cause unbounded memory growth due to the lack of an upper bound on the amount of data buffered when reading post-handshake messages. With the fi...

9.8CVSS7.6AI score0.99999EPSS
Exploits28References302
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.3 views

SUSE CVE-2019-3836

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

5.9CVSS7.8AI score0.03401EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2019/05/31 12:0 a.m.34 views

Ubuntu 16.04 LTS / 18.04 LTS : GnuTLS vulnerabilities (USN-3999-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3999-1 advisory. Eyal Ronen, Kenneth G. Paterson, and Adi Shamir discovered that GnuTLS was vulnerable to a timing side- channel attack known as the Lucky...

7.5CVSS7.3AI score0.58969EPSS
Exploits2References6
Ubuntu
Ubuntu
added 2019/05/30 1:23 p.m.238 views

USN-3999-1: GnuTLS vulnerabilities

Eyal Ronen, Kenneth G. Paterson, and Adi Shamir discovered that GnuTLS was vulnerable to a timing side-channel attack known as the "Lucky Thirteen" issue. A remote attacker could possibly use this issue to perform plaintext-recovery attacks via analysis of timing data. This issue only affected...

7.5CVSS7.2AI score0.58969EPSS
Exploits2
NVD
NVD
added 2019/04/01 3:29 p.m.18 views

CVE-2019-3836

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

7.5CVSS6.5AI score0.03401EPSS
Exploits1References8
OSV
OSV
added 2019/04/01 3:29 p.m.1 views

DEBIAN-CVE-2019-3836

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

7.5CVSS7.8AI score0.03401EPSS
Exploits1References1
Prion
Prion
added 2019/04/01 3:29 p.m.20 views

Null pointer dereference

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

5CVSS7.4AI score0.03401EPSS
Exploits1References8Affected Software3
AlpineLinux
AlpineLinux
added 2019/04/01 2:16 p.m.42 views

CVE-2019-3836

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

7.5CVSS6.5AI score0.03401EPSS
Exploits1
Debian CVE
Debian CVE
added 2019/04/01 2:16 p.m.23 views

CVE-2019-3836

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

7.5CVSS6.8AI score0.03401EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2019/04/01 12:0 a.m.31 views

CVE-2019-3836

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages...

7.5CVSS6.8AI score0.03401EPSS
Exploits1References3
Rows per page
Query Builder