Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2024/03/13 3:38 p.m.26 views

quiche vulnerable to unbounded storage of information related to connection ID retirement

Impact Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1. Endpoints declare the...

5.3CVSS7.3AI score0.00662EPSS
Exploits0References9Affected Software1
NVD
NVD
added 2024/03/12 6:15 p.m.13 views

CVE-2024-1410

Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1...

5.3CVSS4.4AI score0.00662EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/12 12:0 a.m.3 views

Cloudflare quiche resource management error vulnerability

quiche is a Cloudflare open source implementation of the IETF-designated QUIC transport protocol and HTTP/3. A resource management error vulnerability exists in Cloudflare quiche prior to 0.19.1, version 0.20.0, which stems from vulnerability to unlimited storage of information related to...

5.3CVSS6.5AI score0.00662EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/12 12:0 a.m.4 views

PT-2023-32560 · Quiche · Quiche

Name of the Vulnerable Software and Affected Versions: quiche versions 0.15.0 through 0.19.0 Description: The issue is related to unbounded queuing of path validation messages, which could lead to excessive resource consumption. QUIC path validation requires that the recipient of a PATH CHALLENGE...

5.3CVSS5.1AI score0.00763EPSS
Exploits0References11
Rows per page
Query Builder