Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Redos
Redosadded 2026/02/09 12:0 a.m.3 views

ROS-20260209-73-0004

A vulnerability in the onframerecvcallback function soup-server-message-io-http1.c of the GNOME GUI libsoup library is related to misinterpretation of input data when processing :scheme, :authority, and :path pseudo headers. Exploitation of the vulnerability could allow an attacker acting remotel...

7.5CVSS5.6AI score0.00132EPSS
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-47982

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00833EPSS
Exploits0References17
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-10901

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00132EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/08/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-32908

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo- headers :scheme, :authority, and :path, which may allow a...

7.5CVSS7.1AI score0.00132EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2025/06/16 11:28 a.m.1 views

Astra Linux - уязвимость в libsoup3

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS6.4AI score0.00132EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2025/05/13 3:59 p.m.3 views

libsoup: Denial of service on libsoup through HTTP/2 server

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS5.7AI score0.00132EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2025/04/16 2:35 a.m.2 views

SUSE CVE-2025-32908

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS6.4AI score0.00132EPSS
Exploits0References8
OSV
OSVadded 2025/04/14 2:15 p.m.2 views

AZL-60396 CVE-2025-32908 affecting package libsoup for versions less than 3.4.4-4

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS7.3AI score0.00132EPSS
Exploits0References1
OSV
OSVadded 2025/04/14 2:15 p.m.1 views

DEBIAN-CVE-2025-32908

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS7.1AI score0.00132EPSS
Exploits0References1
NVD
NVDadded 2025/04/14 2:15 p.m.13 views

CVE-2025-32908

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS0.00132EPSS
Exploits0References3
OSV
OSVadded 2025/04/14 2:15 p.m.0 views

UBUNTU-CVE-2025-32908

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS7.2AI score0.00132EPSS
Exploits0References7
CVE
CVEadded 2025/04/14 2:0 p.m.121 views

CVE-2025-32908

Affects libsoup3: the HTTP/2 server may not fully validate pseudo-headers (:scheme, :authority, :path), enabling potential DoS by crafted requests. Public disclosures span Fedora advisories and Amazon Linux ALAS entries, which indicate a need to upgrade to a patched libsoup3 version (e.g., 3.6.5 ...

7.5CVSS7.3AI score0.00132EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/04/14 2:0 p.m.12 views

CVE-2025-32908 Libsoup: denial of service on libsoup through http/2 server

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS6.6AI score0.00132EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/04/14 2:0 p.m.21 views

CVE-2025-32908 Libsoup: denial of service on libsoup through http/2 server

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service DoS...

7.5CVSS0.00132EPSS
Exploits0References3
Redos
Redosadded 2024/04/23 12:0 a.m.39 views

ROS-20240423-01

Apache HTTP Server vulnerability is related to blocking HTTP/2 connection processing if it was opened with 0 initial sliding window size. was opened with the initial sliding window size set to 0. Exploitation of the vulnerability could Allow an attacker acting remotely to cause a denial of servic...

7.5CVSS8.8AI score0.94395EPSS
Exploits19
OSV
OSVadded 2024/03/06 11:7 a.m.24 views

BIT-VARNISH-2022-45060

An HTTP Request Forgery issue was discovered in Varnish Cache 5.x and 6.x before 6.0.11, 7.x before 7.1.2, and 7.2.x before 7.2.1. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish server to produce...

7.5CVSS7.7AI score0.00833EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2022/11/28 10:58 a.m.2 views

varnish: Request Forgery Vulnerability

An HTTP Request Forgery issue was discovered in Varnish Cache. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish server to produce invalid HTTP/1 requests to the backend. This could be used to exploit...

7.5CVSS7.2AI score0.00833EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2022/11/28 10:54 a.m.2 views

varnish: Request Forgery Vulnerability

An HTTP Request Forgery issue was discovered in Varnish Cache. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish server to produce invalid HTTP/1 requests to the backend. This could be used to exploit...

7.5CVSS7.2AI score0.00833EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2022/11/28 10:37 a.m.3 views

varnish: Request Forgery Vulnerability

An HTTP Request Forgery issue was discovered in Varnish Cache. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish server to produce invalid HTTP/1 requests to the backend. This could be used to exploit...

7.5CVSS7.2AI score0.00833EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2022/11/28 10:34 a.m.2 views

varnish: Request Forgery Vulnerability

An HTTP Request Forgery issue was discovered in Varnish Cache. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish server to produce invalid HTTP/1 requests to the backend. This could be used to exploit...

7.5CVSS7.2AI score0.00833EPSS
Exploits0References6
Rows per page
Query Builder