Lucene search
+L

57 matches found

vulnrichment
vulnrichment
added 2025/06/02 11:29 a.m.6 views

CVE-2025-46807 File Descriptor Exhaustion in sslh-select and sslh-ev triggers SEGFAULT

A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors in sslh and deny legitimate users service.This issue affects sslh before 2.2.4...

8.7CVSS6.5AI score0.00393EPSS
Exploits0References2
cvelist
cvelist
added 2025/06/02 11:29 a.m.23 views

CVE-2025-46807 File Descriptor Exhaustion in sslh-select and sslh-ev triggers SEGFAULT

A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors in sslh and deny legitimate users service.This issue affects sslh before 2.2.4...

8.7CVSS0.00393EPSS
Exploits0References2
cve
cve
added 2025/06/02 11:29 a.m.62 views

CVE-2025-46807

CVE-2025-46807 affects the sslh project (sslh, an application protocol multiplexer). The flaw is an Allocation of Resources Without Limits or Throttling that allows attackers to exhaust file descriptors and cause a denial of service. Impact described as high availability impact due to resource ex...

8.7CVSS6.5AI score0.00393EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/06/02 12:0 a.m.1 views

PT-2025-23508 · Sslh +1 · Sslh +1

Name of the Vulnerable Software and Affected Versions: sslh versions prior to 2.2.4 Description: A Use of Out-of-range Pointer Offset issue in sslh leads to denial of service on some architectures. Recommendations: For versions prior to 2.2.4, update to version 2.2.4 or later to resolve the issue...

6.9CVSS6.2AI score0.00404EPSS
Exploits0References18
cnnvd
cnnvd
added 2025/06/02 12:0 a.m.8 views

sslh 安全漏洞

sslh is an application protocol multiplexer by the individual developer Yves Rutschle. A security vulnerability exists in sslh versions prior to 2.2.4, which stems from out-of-bounds pointer offsets and may result in a denial of service...

6.9CVSS6.3AI score0.00404EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/06/02 12:0 a.m.7 views

sslh 安全漏洞

sslh is an application protocol multiplexer by the individual developer Yves Rutschle. A security vulnerability exists in sslh versions prior to 2.2.4, which stems from an unrestricted resource allocation that could lead to file descriptor exhaustion and denial of service...

8.7CVSS6.3AI score0.00393EPSS
Exploits0References4
osv
osv
added 2025/06/02 12:0 a.m.4 views

OPENSUSE-SU-2025:15194-1 sslh-2.2.4-1.1 on GA media

These are all security issues fixed in the sslh-2.2.4-1.1 package on the GA media of openSUSE Tumbleweed...

8.7CVSS5.8AI score0.00404EPSS
Exploits0References3
osv
osv
added 2025/05/08 12:0 a.m.3 views

OPENSUSE-SU-2025:15069-1 sslh-2.2.3-1.1 on GA media

These are all security issues fixed in the sslh-2.2.3-1.1 package on the GA media of openSUSE Tumbleweed...

5.5CVSS7.9AI score0.00484EPSS
Exploits0References1
nvd
nvd
added 2022/12/21 10:15 p.m.22 views

CVE-2022-4639

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

9.8CVSS0.00855EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2022/12/21 10:15 p.m.34 views

CVE-2022-4639

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

9.8CVSS6.7AI score0.00855EPSS
Exploits0References2
prion
prion
added 2022/12/21 10:15 p.m.22 views

Format string

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

7.5CVSS9.5AI score0.00855EPSS
Exploits0References3Affected Software1
osv
osv
added 2022/12/21 10:15 p.m.4 views

UBUNTU-CVE-2022-4639

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

9.8CVSS5.2AI score0.00855EPSS
Exploits0References3
cve
cve
added 2022/12/21 12:0 a.m.53 views

CVE-2022-4639

CVE-2022-4639 affects sslh, specifically the hexdump function in probe.c of the Packet Dumping Handler. The issue is a format string vulnerability caused by manipulating the msg_info argument, potentially allowing remote exploitation. Patch b19f8a6046b080e4c2e28354a58556bb26040c6f fixes this issu...

9.8CVSS7.6AI score0.00855EPSS
Exploits0References3Affected Software1
osv
osv
added 2022/12/21 12:0 a.m.20 views

CVE-2022-4639 sslh Packet Dumping probe.c hexdump format string

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

5.6CVSS6.5AI score0.00855EPSS
Exploits0References5
cvelist
cvelist
added 2022/12/21 12:0 a.m.26 views

CVE-2022-4639 sslh Packet Dumping probe.c hexdump format string

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

5.6CVSS9.8AI score0.00855EPSS
Exploits0References3
debiancve
debiancve
added 2022/12/21 12:0 a.m.44 views

CVE-2022-4639

A vulnerability, which was classified as critical, has been found in sslh. This issue affects the function hexdump of the file probe.c of the component Packet Dumping Handler. The manipulation of the argument msginfo leads to format string. The attack may be initiated remotely. The name of the...

9.8CVSS9AI score0.00855EPSS
Exploits0
n0where
n0where
added 2017/11/27 10:59 p.m.179 views

Applicative Protocol Multiplexer: SSLH

sslh accepts connections on specified ports, and forwards them further based on tests performed on the first data packet sent by the remote client. Probes for HTTP, SSL, SSH, OpenVPN, tinc, XMPP are implemented, and any other protocol that can be tested using a regular expression, can be...

Exploits0References1
Rows per page
Query Builder