CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

CVE-2026-48772

A flaw was found in ProxySQL, a proxy for MySQL and its forks, as well as PostgreSQL. A remote attacker can exploit this vulnerability by sending a specially crafted PROXY protocol version 1 PP1 header with an 'UNKNOWN' protocol token. Despite the specification requiring these address fields to b...

10CVSS5.8AI score0.00185EPSS

Exploits0References2

OSV•added 2026/02/26 8:47 a.m.•5 views

BIT-MONGODB-2026-1848 Connections received from the proxy port may not count towards total accepted connections

Connections received from the proxy port may not count towards total accepted connections, resulting in server crashes if the total number of connections exceeds available resources. This only applies to connections accepted from the proxy port, pending the proxy protocol header...

8.2CVSS5.5AI score0.00263EPSS

Exploits0References2

NVD•added 2026/02/10 7:15 p.m.•4 views

CVE-2026-1848

8.2CVSS0.00263EPSS

Exploits0References1

OSV•added 2026/02/10 7:15 p.m.•1 views

CVE-2026-1848

8.2CVSS5.9AI score

Exploits0References1

OSV•added 2026/02/10 7:15 p.m.•4 views

UBUNTU-CVE-2026-1848

8.2CVSS5.8AI score0.00263EPSS

Exploits0References3

Cvelist•added 2026/02/10 6:22 p.m.•25 views

CVE-2026-1848 Connections received from the proxy port may not count towards total accepted connections

8.2CVSS0.00263EPSS

Exploits0References1

CVE•added 2026/02/10 6:22 p.m.•21 views

CVE-2026-1848

CVE-2026-1848 affects a MongoDB component where connections received via the proxy port are not counted toward the total accepted connections while the proxy protocol header is pending. This can allow the server to reach resource limits, potentially causing crashes when the total connections exce...

8.2CVSS5.5AI score0.00263EPSS

Exploits0References1Affected Software1

MongoDB•added 2026/02/10 6:22 p.m.•8 views

Connections received from the proxy port may not count towards total accepted connections

8.2CVSS5.5AI score0.00263EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/02/10 12:0 a.m.•7 views

PT-2026-7421

Name of the Vulnerable Software and Affected Versions Connections affected versions not specified Description The system may not accurately count connections received through the proxy port, specifically when a proxy protocol header is present. This can lead to the server exceeding its connection...

8.2CVSS5.4AI score0.00263EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 3:51 a.m.•1 views

SUSE CVE-2020-35470

Envoy before 1.16.1 logs an incorrect downstream address because it considers only the directly connected peer, not the information in the proxy protocol header. This affects situations with tcp-proxy as the network filter not HTTP filters...

8.8CVSS8.9AI score0.00974EPSS

Exploits0References3

BDU FSTEC•added 2022/04/06 12:0 a.m.•2 views

The vulnerability of the PROXY protocol library in the Golang language, Go-proxyproto, allows a hacker to induce a service failure.

The vulnerability of the PROXY protocol library in the Golang language is related to the absence of a timeout during the waiting for the proxy protocol header. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS7.2AI score0.01648EPSS

Exploits0References7Affected Software2

NVD•added 2021/07/21 7:15 a.m.•15 views

CVE-2021-23409