CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-1853

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00172EPSS

Exploits0References2

NVD•added 2025/01/28 10:15 a.m.•11 views

CVE-2025-0752

A flaw was found in OpenShift Service Mesh 2.6.3 and 2.5.6. Rate-limiter avoidance, access-control bypass, CPU and memory exhaustion, and replay attacks may be possible due to improper HTTP header sanitization in Envoy...

7.1CVSS0.00172EPSS

Exploits0References2

CVE•added 2025/01/28 9:29 a.m.•58 views

CVE-2025-0752

CVE-2025-0752 affects OpenShift Service Mesh versions 2.6.3 and 2.5.6 due to improper HTTP header sanitization in Envoy. The issue can enable rate-limiter circumvention, access-control bypass, and may cause CPU/memory exhaustion and replay attacks. Documented impact is limited to these versions; ...

7.1CVSS7AI score0.00172EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2025/01/28 12:0 a.m.•3 views

PT-2025-4039 · Red Hat · Openshift Service Mesh

Name of the Vulnerable Software and Affected Versions: OpenShift Service Mesh versions 2.5.6 through 2.6.3 Description: A flaw was found in OpenShift Service Mesh due to improper HTTP header sanitization in Envoy. This may lead to rate-limiter avoidance, access-control bypass, CPU and memory...

6.3CVSS6.2AI score0.00172EPSS

Exploits0References8