Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2024/04/10 2:17 a.m.2 views

SUSE CVE-2024-2511

Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem can occur in...

5.9CVSS8.1AI score0.54026EPSS
Exploits0References11
OSV
OSV
added 2021/12/10 12:15 a.m.3 views

ALPINE-CVE-2021-43803

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom...

7.5CVSS6.7AI score0.44824EPSS
Exploits0References1
Veracode
Veracode
added 2021/09/09 3:46 a.m.32 views

Privilege Escalation

github.com/hashicorp/consul is vulnerable to Privilege Escalation. The vulnerability exists due to a lack of sanitization of authorization which may allow non-server agents with valid certificate signed by the same CA to access server-only functionality...

8.8CVSS8.4AI score0.0123EPSS
Exploits0References7Affected Software2
Prion
Prion
added 2021/09/07 12:15 p.m.33 views

Privilege escalation

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2...

6.5CVSS8.4AI score0.0123EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder